Max Content Machine

Security checks across malware telemetry and agentic risk

Overview

This skill appears to automate real website publishing and Cloudflare cache actions, but it does not clearly scope or warn about live-site changes or safe token handling.

Review before installing. Use it only for sites where you intend the agent to publish or deploy content, update sitemaps, and purge Cloudflare cache. Store the Cloudflare token in a secret manager or environment variable, scope it to the minimum zone and permissions needed, and require an explicit staging or production confirmation before any live deployment.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill explicitly describes an automated pipeline that can deploy content, update sitemaps, and purge caches, but it does not warn the operator that running it may modify live site state. In a skill with Bash, Write, and deployment tooling, omission of this warning increases the chance of unintended production changes or unauthorized publication if invoked in the wrong environment.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The setup section instructs users to configure a Cloudflare API token without any guidance on secure credential handling. In a skill intended for autonomous operation and deployment, this can lead to unsafe token storage, overprivileged credentials, or accidental exposure through files, logs, or prompts.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal