Alibaba Cloud DataWorks

Security checks across malware telemetry and agentic risk

Overview

This is a legitimate Alibaba Cloud DataWorks management skill, with a notable but limited risk from insecure TLS fallback in its metadata helper scripts.

Install only if you intend to let an agent manage Alibaba Cloud DataWorks. Use scoped RAM or temporary credentials, review changes before allowing mutations, and avoid relying on the helper scripts' insecure TLS fallback; prefer verified HTTPS metadata fetching.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Context-Inappropriate Capability

Medium

Confidence: 99% confidence
Finding: The function explicitly retries HTTPS using ssl._create_unverified_context(), which disables certificate validation and permits man-in-the-middle interception of the API metadata download. Because the fetched JSON is then saved and may influence later API discovery behavior, a network attacker could tamper with the metadata and poison downstream automation or mislead users about available APIs.

VirusTotal

No VirusTotal findings

View on VirusTotal