Baidu Search Sldjs

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says: it opens a Baidu search in the user's browser, with the main privacy caveat that search text is sent to Baidu.

Install only if you want a helper that opens Baidu searches in your local browser. Do not put passwords, private documents, personal data, or confidential business text in the search query, because that text will be sent to Baidu.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 94% confidence
Finding: The skill describes opening a browser and performing a live web search, which implies network access, but the metadata does not declare any permissions for that capability. This creates a transparency and policy-enforcement gap: users and hosting systems may approve or execute the skill without understanding that it can initiate outbound web requests and open external content.

Missing User Warnings

Low

Confidence: 94% confidence
Finding: The skill takes user-controlled input, builds an external Baidu search URL, and immediately opens the default browser without any confirmation or preview. While the query is URL-encoded and limited to a Baidu HTTPS search endpoint, this still causes an unsolicited external action that may leak sensitive user text to a third party and trigger unwanted browser activity.

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal