Security audit

Peekaboo

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed macOS UI automation skill with powerful but purpose-aligned screen, clipboard, app, and input controls.

Install only if you intend to let an agent operate your Mac UI. Review commands before use, avoid capturing screens or clipboard contents that contain secrets, and do not automate real credentials or sensitive apps unless you explicitly trust the workflow.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill explicitly exposes macOS UI automation, screenshot capture, screen inspection, and clipboard access, all of which can access sensitive information such as credentials, private documents, tokens, or messages. While these capabilities are the legitimate purpose of the tool, documenting them without any warning, consent guidance, or data-handling caveats increases the risk of unsafe use and inadvertent collection or disclosure of sensitive data.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The examples demonstrate entering credentials (including a password-like value) and analyzing screenshots/dashboard content without caution about secret exposure, making unsafe patterns appear normal. In a UI automation skill, such examples can encourage operators or downstream agents to type secrets into arbitrary contexts or send sensitive screen content to analysis workflows without review.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal