Channel Bridge

Security checks across malware telemetry and agentic risk

Overview

This is a small message-routing library, but one documented filter can silently fail open and forward more messages than the user intended.

Review routes carefully before connecting real messaging adapters. Avoid unsupported filters such as channel: unless you implement them, test with harmless messages first, and add explicit allowlists, redaction, and buffer limits for sensitive content.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: The skill describes broad cross-platform message routing behavior without defining clear activation boundaries, authorization requirements, or data-handling constraints. In this context, an agent could over-route messages, forward sensitive content across channels, or trigger routing in unintended situations, increasing the risk of data leakage and policy violations.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal