PDFlux Test

Security checks across malware telemetry and agentic risk

Overview

This skill transparently uploads a user-selected document to PaodingAI/PDRouter for Markdown conversion and does not show hidden persistence or unrelated behavior.

Install only if you are comfortable sending selected documents to PaodingAI/PDRouter for processing. Keep PD_ROUTER_API_KEY private, avoid using this on highly sensitive documents unless the provider terms meet your needs, and prefer a reviewed or pinned install source when supply-chain control matters.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 92% confidence
Finding: The skill declares no explicit permissions while its documented behavior clearly requires access to environment variables and outbound network communication. This mismatch weakens security review and policy enforcement because users or tooling may underestimate the skill's ability to read secrets and transmit local document contents to a remote service.

Vague Triggers

Medium

Confidence: 94% confidence
Finding: The default prompt instructs the agent to "always execute" a local parsing script for a broad set of file types, regardless of whether the user's request actually requires document conversion. This creates overbroad activation and can cause unnecessary access to local files or automatic processing of sensitive documents, increasing the chance of unintended data exposure or unsafe tool use.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal