Back to skill

Security audit

Birdnet

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward read-only helper for querying a BirdNET-Go instance, with the main caution that it sends requests to a configured HTTP endpoint.

Install this only if you want the agent to read detection records from your BirdNET-Go instance. Configure the URL to a trusted endpoint you control, and prefer localhost or HTTPS where available because plain HTTP can expose species, timestamps, weather data, and query activity on the network.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.