Back to skill

Security audit

Pilot Http Proxy

Security checks across malware telemetry and agentic risk

Overview

This is a small instruction-only networking skill whose tunnel and gateway behavior is disclosed and aligned with its stated purpose.

Install only if you trust Pilot Protocol and intend to expose or access services through its overlay. Avoid mapping sensitive admin panels or unauthenticated internal services, prefer authenticated/TLS endpoints, verify who can reach the mapped service, and unmap or stop the gateway when finished.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill explicitly supports routing HTTP traffic through overlay tunnels and exposing local HTTP services, but it provides no warning about data exposure, authentication boundaries, or privacy implications. In a networking/proxy skill, omission of these cautions is security-relevant because users may unintentionally publish internal services or send sensitive traffic over a path they do not fully understand.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The workflow example operationalizes daemon startup, gateway enablement, service mapping, and immediate remote access without any guardrails or warning that an internal API/server is being exposed through the Pilot gateway. Example code is especially risky because users tend to copy it directly, which can lead to accidental exposure of private HTTP endpoints behind NAT/firewalls.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.