Baidu Pan OAuth2 Auth

Security checks across malware telemetry and agentic risk

Overview

The skill appears to use Baidu Pan credentials in a way that fits its purpose, but users should protect the local .env file because it stores sensitive tokens.

Before installing, make sure you are comfortable storing Baidu Pan credentials and refresh tokens in a local .env file. Keep that file out of version control and backups, restrict file permissions where possible, and rotate or revoke the Baidu credentials if the file is exposed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill tells users to place AppKey/SecretKey in a .env file and states that access and refresh tokens will be automatically updated there, but it does not warn that this persists long-lived secrets on disk. If the file is readable by other users, committed to version control, included in backups/logs, or exposed by tooling, an attacker could reuse the tokens or client credentials to access the Baidu Pan account.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal