Threads 视频下载器

Security checks across malware telemetry and agentic risk

Overview

This skill is an instruction-only Threads video downloader whose local file writes are disclosed and match its purpose.

Install only if you want an agent to download Threads videos for you. Use explicit Threads links, choose or confirm the save folder, monitor disk usage for batches, and only download or reuse media you have permission to keep.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The skill explicitly states it will automatically download content, save it to a specified directory, and rename files, but it does not clearly warn the user about file-system writes or require explicit confirmation before writing. In an agent setting, silent downloads and file creation can lead to unintended persistence of untrusted content, storage abuse, or writes into sensitive locations if the target path is not tightly controlled.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal