Security audit
Birdnet
Security checks across malware telemetry and agentic risk
Overview
This skill is a straightforward read-only helper for querying a BirdNET-Go instance, with the main caution that it sends requests to a configured HTTP endpoint.
Install this only if you want the agent to read detection records from your BirdNET-Go instance. Configure the URL to a trusted endpoint you control, and prefer localhost or HTTPS where available because plain HTTP can expose species, timestamps, weather data, and query activity on the network.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
