Syft News Pool (CLI)

Security checks across malware telemetry and agentic risk

Overview

This is a guidance-only Syft CLI helper whose account login, network use, and install commands are disclosed and fit its stated purpose.

Before installing, make sure you trust Syft AI and the @orionarm/syft-cli npm package, since the workflow asks you to install a global CLI and log in to a Syft account. Run syft install-skill only if you intentionally want it to modify your Codex skill setup.

Publisher note

Requires network and account authentication to access the news pool of Syft News. This skill translates user commands into corresponding CLI function calls.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 94% confidence
Finding: The default prompt instructs users to invoke the skill with phrasing like "help me install Syft CLI and choose the right command for what I want to do," which includes the very broad clause "what I want to do." In a manifest file, this lacks clear trigger boundaries or exclusion conditions and could cause unintended invocation for generic help requests related to command selection.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal