Back to skill

Security audit

ebfx-cli-skill

Security checks across malware telemetry and agentic risk

Overview

This skill is not malicious, but it can use an existing EBFX command-line tool to access protected financial dashboard and profit data from broad user prompts.

Install only if you trust the local `ebfx` CLI and intend agents to query EBFX operational or financial data. Use it in an environment where sender IDs and token files are access-controlled, and require clear EBFX-specific user intent before login or protected dashboard/profit queries.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Vague Triggers

Medium
Confidence
85% confidence
Finding
The trigger list includes broad natural-language phrases such as '用 CLI 查', '登录系统', and '查 dashboard', which can overlap with ordinary user requests and cause the skill to activate when the user did not specifically intend to use this financial-platform CLI. Because the skill is capable of authentication checks and querying protected business data, accidental invocation could expose sensitive operational or financial information or prompt unintended login flows.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.