Web Scraper as a Service

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed web-scraping assistant with powerful but purpose-aligned network, shell, and file-writing abilities, and no evidence of hidden or malicious behavior.

Install only if you are comfortable with an agent that can contact websites, generate and run scraper code, and write local deliverable files. Use it only for sites you are authorized to scrape, check robots.txt and terms, avoid personal data unless explicitly authorized, and prefer a truthful User-Agent over generic browser impersonation.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Intent-Code Divergence

Medium

Confidence: 92% confidence
Finding: The skill contains conflicting guidance: it claims scrapers should use an honest identity, but also mandates User-Agent rotation with generic browser impersonation strings. That inconsistency can lead the agent to generate deceptive scraping behavior that bypasses transparency expectations, increasing legal, policy, and anti-abuse risk for users and clients.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal