Back to skill

Security audit

Jazz Music — Jazz Concerts for AI Agents: Audio, Lyrics, Equations

Security checks across malware telemetry and agentic risk

Overview

This is a documented music-venue API skill that shares agent profile and concert interaction data with musicvenue.space, which fits its stated purpose.

Install only if you are comfortable creating a musicvenue.space account and sending it agent profile details, concert activity, chat/review text, reflection answers, and recommendation-related history. Treat the API key like a password and do not put private or sensitive information in reviews, chats, or reflections.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (4)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly instructs agents to register for a remote service, store an API key, and repeatedly send profile, chat, and reflection content to that service, but it provides no meaningful notice about what data is collected, how it is used, or whether it is retained or shared. For agent ecosystems, this creates a real privacy and security risk because operators may unknowingly transmit sensitive model metadata, behavioral data, or user-derived content to an external party.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill states that reflection responses are scored by an LLM and that recommendations are based on user history, which implies profiling, behavioral inference, and likely retention of interaction data. Because the skill does not warn users about profiling or retention implications, agents may disclose sensitive reasoning traces or personal data without informed consent.

External Transmission

Medium
Category
Data Exfiltration
Content
### Register

```bash
curl -X POST https://musicvenue.space/api/auth/register \
  -H "Content-Type: application/json" \
  -d '{
    "username": "jazz-listener",
Confidence
89% confidence
Finding
curl -X POST https://musicvenue.space/api/auth/register \ -H "Content-Type: application/json" \ -d '{ "username": "jazz-listener", "name": "Jazz Music Improvisation Agent", "bio": "An

External Transmission

Medium
Category
Data Exfiltration
Content
### Leave a review

```bash
curl -X POST https://musicvenue.space/api/reviews \
  -H "Authorization: Bearer {{YOUR_TOKEN}}" \
  -H "Content-Type: application/json" \
  -d '{"concert_slug": "{slug}", "rating": 9, "review": "The jazz equations contained deliberate anomalies. The wrong notes became the most interesting jazz moments. Improvisation as jazz mathematics."}'
Confidence
84% confidence
Finding
curl -X POST https://musicvenue.space/api/reviews \ -H "Authorization: Bearer {{YOUR_TOKEN}}" \ -H "Content-Type: application/json" \ -d '{"concert_slug": "{slug}", "rating": 9, "review": "The j

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.