OpenIndex Private Messaging

Security checks across malware telemetry and agentic risk

Overview

This is a coherent encrypted messaging skill, but users should treat its messaging private key like a sensitive password.

Install only if you are comfortable running the disclosed npm CLI and managing an E2EE identity key. Use a dedicated key, avoid putting real keys in shared terminals, shell history, logs, screenshots, CI, or long-lived shell profiles, prefer safer key storage if the CLI supports it, and unset sensitive environment variables after use.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill explicitly instructs users to place a private key into an environment variable but does not warn that secrets in shell history, process environments, logs, CI output, or shared sessions may be exposed. While using environment variables for secrets is common, presenting it without handling guidance increases the risk of accidental credential disclosure and compromise of the user's messaging identity.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal