Ravi passwords

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed password-manager skill, but it exposes plaintext passwords during normal use, so users must handle outputs carefully.

Install only if you trust Ravi with website credentials. Avoid putting real passwords directly in command lines, shared terminals, logs, screenshots, or chat transcripts; prefer generated passwords and retrieve them only when needed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly documents workflows that return plaintext passwords and encourages shell-based handling of them without warning about command history, terminal scrollback, logging, or accidental echoing into other tools. In a password-manager skill, this is especially risky because users and downstream agents may copy these examples directly, increasing the chance of credential disclosure through normal operational telemetry rather than a software exploit.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal