Tiktok Live Commerce

Security checks across malware telemetry and agentic risk

Overview

The skill is coherent and not deceptive, but it teaches an agent to use a PingHuman bearer token for paid hiring, approval, and tipping actions without clear approval or spending safeguards.

Install only if you want your agent to help hire TikTok livestreamers through PingHuman. Use a scoped, revocable API token, avoid pasting real tokens into chats or shell history, and require explicit approval before the agent posts a paid task, approves work, pays commissions, or adds a tip.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill repeatedly shows bearer tokens embedded directly in curl examples without any warning that these are sensitive secrets. Even though the value appears to be a placeholder, this pattern normalizes unsafe secret handling and makes it more likely users will paste real credentials into shell history, logs, screenshots, or shared documentation.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal