Py Math Viz

Security checks across malware telemetry and agentic risk

Overview

This is mainly a local plotting skill, with a visible optional weather script that contacts Open-Meteo only when run.

Install only if you are comfortable with a plotting skill that also includes an optional weather forecast renderer. Normal plotting and image-tiling use local files; run scripts/weather.py only when you intend to share the chosen latitude, longitude, and timezone with Open-Meteo.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration

Findings (4)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 83% confidence
Finding: The skill advertises a local plotting workflow but the detected capabilities include network access without any declared permission boundary. Undeclared network/file-read behavior expands the trust surface and can enable unexpected data exfiltration, remote data fetching, or privacy-sensitive reads when the skill is invoked in broader agent workflows.

Tp4

High

Category: MCP Tool Poisoning
Confidence: 94% confidence
Finding: A plotting skill that also contacts the Open-Meteo API and generates weather outputs is performing behavior outside its stated purpose. This mismatch is dangerous because users and orchestrators may grant it trust as a local visualization tool while it silently performs external requests, potentially leaking user-provided coordinates/timezone data and bypassing policy expectations around network use.

Description-Behavior Mismatch

Medium

Confidence: 89% confidence
Finding: The script performs a live outbound network request to a third-party weather API even though the skill is described primarily as a local Python math/data visualization tool. This expands the trust boundary, creates data-flow to an external service, and may surprise users or operators who expect purely local rendering behavior.

Context-Inappropriate Capability

Medium

Confidence: 87% confidence
Finding: External weather API access is not inherently malicious, but it is out of scope relative to the stated purpose of a plotting/export skill and introduces an undeclared dependency on a remote service. Even limited parameters like latitude, longitude, and timezone can disclose user location context and create privacy, compliance, and reliability concerns.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal