Back to skill

Security audit

Scrapfly Scraper

Security checks across malware telemetry and agentic risk

Overview

The skill appears to be a coherent Scrapfly scraping integration, but it needs Review because it can forward sensitive request details such as cookies, headers, bodies, and browser actions to a third-party anti-bot scraping service without clear user guardrails.

Install only if you are comfortable routing scraping targets and request details through Scrapfly. Do not provide personal data, secrets, privileged account cookies, auth headers, or targets you are not authorized to access, and keep the Scrapfly API key in an environment variable or secret manager rather than in prompts or source files.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly promotes scraping, anti-bot bypass, proxy rotation, session reuse, cookies, and browser automation through a third-party service, but it provides no warning that user-supplied URLs, headers, cookies, and actions are transmitted to Scrapfly. This can expose sensitive data, create legal/compliance risk, and enable misuse against third-party sites or accounts if operators do not understand the trust boundary.

Missing User Warnings

Low
Confidence
83% confidence
Finding
The setup text tells users to provide an API key directly or via environment variable but does not caution against hardcoding credentials or exposing them in prompts, code snippets, logs, or version control. While environment variables are a normal mechanism, omission of basic secret-handling guidance can lead to accidental credential disclosure.

External Transmission

Medium
Category
Data Exfiltration
Content
## API Reference

**Endpoint:** `https://api.scrapfly.io/scrape`
The HTTP method is forwarded to the upstream URL.
To retrieve data from a web page or an API, use the GET method, which is the default method.
If the API resource like an API requries other methods, like POST. You can use it via the `method` parameter of the `ScrapeConfig`
Confidence
89% confidence
Finding
https://api.scrapfly.io/

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.