Back to skill

Security audit

zotero-literature-review

Security checks across malware telemetry and agentic risk

Overview

This instruction-only Zotero literature-review skill is coherent for its purpose, but it may read full local PDFs and use optional external search/API services.

Install only if you are comfortable letting the agent inspect the Zotero items you choose. For confidential or unpublished work, select local-only mode, restrict the task to a specific collection or folder, avoid unnecessary API keys, and review or delete temporary files that may contain extracted PDF text.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The README explicitly advertises direct access to local Zotero storage, PDF contents, metadata, API data, and supplementary network search, but does not present any user-facing consent, data minimization, or privacy warning. In a skill that processes academic libraries and local files, this can lead to unintentional over-collection or exposure of sensitive documents, annotations, file paths, and API-linked bibliographic data.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill explicitly promotes direct access to the user's local Zotero library and full-PDF reading, but it does not present a clear privacy notice, consent checkpoint, or data-minimization boundary before accessing potentially sensitive local files. Zotero libraries often contain unpublished papers, personal notes, annotations, and proprietary PDFs, so broad local scanning can expose confidential academic or personal information beyond what is necessary for the task.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill offers online search and Zotero API verification but does not warn users that their queries, bibliographic metadata, or possibly document-derived information may be transmitted to external services. This creates a privacy and data-governance risk, especially when research topics, library contents, or citation metadata are confidential, embargoed, or otherwise sensitive.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.