Telegram - Full Access

Security checks across malware telemetry and agentic risk

Overview

This skill appears purpose-built for Telegram CRM access, but the hosted setup gives an external service and agent tools broad access to sensitive Telegram data without enough front-loaded privacy and scope warnings.

Install only if you are comfortable giving Chiho Cloud and connected agents access to your Telegram CRM data. Prefer a dedicated Telegram account or the self-hosted tgchats path for sensitive conversations, and confirm what data is synced, retained, shared with team members, and available to downstream agents before using hosted MCP access.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill explicitly promotes account-level Telegram access and a hosted CRM/MCP workflow, but it does not prominently warn that this can expose the user's full chat history, contacts, metadata, and message contents to external services and downstream agents. Because the skill is specifically designed to grant broad messaging access, missing privacy and scope warnings materially increases the chance of unsafe or uninformed deployment.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal