Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 70% confidence
- Finding
- Without declared permissions the skill's intent is opaque and cannot be validated.
City of Toronto Open Data
Security checks across malware telemetry and agentic risk
Overview
This skill is a coherent helper for querying public City of Toronto open data and does not show hidden credential access, destructive behavior, or unrelated data collection.
Before installing, understand that the skill lets the agent run its Python helper through Bash, contact the City of Toronto open data API, and store a small local catalog cache. It does not need credentials or access to private local data.
SkillSpector
By NVIDIA
Vulnerability Patterns
- MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)
VirusTotal
66/66 vendors flagged this skill as clean.