Firehose Web Monitor

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only Firehose API skill, but it needs review because it encourages broad token retrieval with a management key.

Install only if you want an agent to help administer Firehose. Prefer a single intended tap token for streaming and rule work, provide the management key only for explicit admin tasks, avoid surfacing full tokens in chat or logs, and require confirmation before create, delete, or revoke operations.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 84% confidence
Finding: The line explicitly encourages using a management key to retrieve all tap tokens, materially expanding access from administrative metadata into reusable streaming credentials. In a skill context, this normalizes broad credential enumeration without emphasizing least privilege, token sensitivity, or restrictions on exposing or reusing those tokens.

Ssd 3

Medium

Confidence: 89% confidence
Finding: This documentation tells users to leverage a high-privilege management key to obtain every tap token and thereby enable broad streaming access. That creates an avoidable privilege-expansion path: anyone or any agent with the management key can pivot into all tap streams, increasing blast radius if the key or outputs are mishandled.

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal