UAPI 程序员历史事件接口

Security checks across malware telemetry and agentic risk

Overview

This is a narrow read-only UAPI lookup skill for programmer-history events, with a minor risk that its broad "programmer" trigger could activate in unrelated conversations.

Install this only if you want your agent to use uapis.cn for programmer-history lookups. Confirm the user request is really about historical programmer events before allowing a call, and provide a UAPI key only for that specific service if quota or authentication requires it.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (3)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The trigger list includes the standalone English term "programmer", which is overly broad and likely to match many unrelated user requests about programmers rather than this specific history-events endpoint. That can cause unintended skill selection and downstream API calls against the wrong endpoint, leading to incorrect actions, user confusion, and possible leakage of query context to an unnecessary external service.

Vague Triggers

Medium

Confidence: 95% confidence
Finding: The skill enables implicit invocation for a broad API-calling capability without defining narrow trigger conditions, exclusions, or stronger contextual constraints. This can cause the agent to invoke the external history/programmer endpoint unexpectedly based on vague user phrasing, increasing the risk of unintended data access, unnecessary external calls, or prompt-routing abuse by adversarial inputs.

Vague Triggers

Medium

Confidence: 94% confidence
Finding: The trigger keyword "programmer" is overly generic and can match many ordinary user requests that are not asking for the specific `/history/programmer` endpoint. This can cause incorrect skill selection and unintended external API calls, especially because the quick-start guidance says to directly choose this skill when the request appears to match.

VirusTotal

57/57 vendors flagged this skill as clean.

View on VirusTotal