Academic Research

Security checks across malware telemetry and agentic risk

Overview

This skill performs ordinary academic paper search and literature review tasks, with disclosed external API use and local output/cache files.

Install this if you are comfortable sending academic queries, author names, and DOIs to OpenAlex or Unpaywall. Use ordinary project-local output filenames, avoid writing to configuration or system paths, and clear /tmp/litreview_cache on shared machines or for sensitive research topics.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 95% confidence
Finding: The skill advertises and instructs use of scripts that perform network access, read data, and write output/cache files, but it does not declare any permissions. Undeclared capabilities reduce transparency and can bypass least-privilege review, making it harder for operators to understand that the skill can reach external services and write local data.

Vague Triggers

Medium

Confidence: 84% confidence
Finding: The description and trigger language are broad enough to match generic research, synthesis, and reference-gathering requests, which could cause the skill to activate in contexts the user did not intend. Over-broad activation is risky because this skill can make network requests and write files, so accidental invocation may expose queries externally or produce side effects unexpectedly.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal