Tamaton

Security checks across malware telemetry and agentic risk

Overview

The skill is mostly coherent, but it tells users to put a powerful account secret directly into a URL, which can leak the credential.

Install only if you are comfortable giving the agent access to a funded Tamaton account with the requested scopes. Avoid using the pre-filled install URL with the secret in the query string; manually configure the MCP token instead, request only needed scopes, keep a low spend cap, and rotate the key if it was pasted into a URL.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

High

Confidence: 98% confidence
Finding: The setup instructions place the bearer credential (`<key_id>:<secret>`) directly into a URL query parameter for `GET /api/bots/install?key=...`. Secrets in URLs are commonly exposed through shell history, browser history, proxy logs, analytics, referer headers, and server access logs, creating a high risk of credential leakage and account compromise.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal