S2 Atmos Perception

Security checks across malware telemetry and agentic risk

Overview

This is a weather and space-weather helper whose external API use is expected, with a privacy disclosure gap but no evidence of hidden persistence, credential access, or harmful behavior.

Install only if you are comfortable sending the location you provide to external weather services. Use a coarse city-level location when possible, and note that the included Python file appears to contain a markdown code fence that may need fixing before it runs correctly.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 95% confidence
Finding: The skill declares only the exec tool, but its documented behavior explicitly depends on reaching external weather and NOAA services, which implies network access beyond what is transparently declared. This mismatch can undermine permission auditing and sandbox policy enforcement, making it easier for a skill to exfiltrate data or perform unintended outbound requests under the guise of benign weather retrieval.

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill sends the user-provided location to third-party geocoding, weather, and air-quality services without any visible disclosure, consent flow, or minimization. Location data can be sensitive personal information, and silent transmission to external providers creates a real privacy risk even though the behavior appears functionally necessary for the skill.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal