Security audit

streaming-obs-bootstrap

Security checks across malware telemetry and agentic risk

Overview

This appears to be a legitimate OBS setup helper, but it can expose the whole workspace over the LAN and can change or start OBS streaming without strong safeguards.

Install only if you are comfortable giving this skill control of OBS and briefly serving local workspace files on your network. Back up your OBS scene collection first, verify the target OBS host and profile, restrict the overlay server to safe files or a trusted LAN, stop the background server when finished, and do not run stream_dry_run.sh unless the configured OBS account is safe to go live.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (4)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill instructs the user to start a LAN-reachable HTTP server for browser overlays but does not clearly warn that it exposes workspace content over the network and depends on network-accessible URLs. In a multi-device or shared LAN setup, this can unintentionally broaden access to local files or reveal internal IP/topology information, making accidental exposure more likely.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The workflow rebuilds scenes, attaches sources, and applies presets on the target OBS host, but the description does not prominently warn that it will modify existing OBS configuration. On a remote or production streaming host, this can cause unintended scene loss, broken layouts, or live-stream disruption if invoked without informed consent or backups.

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The page automatically polls a local HTTP screenshot endpoint every 5 seconds and displays the result without any user-facing disclosure or consent indicator. In this skill's context, the endpoint appears intended for OBS monitoring, but silent continuous retrieval from a localhost service can expose sensitive visual data to anyone viewing the panel and normalizes hidden local-service access from browser content.

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The script starts and stops a live OBS stream automatically with no confirmation, safeguard, or environment check. In the context of a streaming setup skill, this can unintentionally broadcast audio/video or disrupt an existing live session if run against a local or remote OBS instance, making the behavior operationally risky even if it appears intended as a smoke test.

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.