带货精灵 - 商品全链路运营

Security checks across malware telemetry and agentic risk

Overview

This ecommerce marketing skill is mostly a text workflow, with a disclosed but imperfectly controlled local HTML report export.

Install only if you are comfortable with the skill generating a local HTML report for ecommerce product analysis. For better control, ask the agent to show the filename and path before saving, or to return the HTML in chat instead of writing to your Desktop.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Context-Inappropriate Capability

Medium

Confidence: 94% confidence
Finding: The skill explicitly instructs writing an HTML report to the user's Desktop, which requires host filesystem access beyond what is necessary for generating marketing analysis. Unprompted local file creation can violate least-privilege expectations, surprise users, and become a primitive for persistence, clutter, or delivery of active content if the runtime honors such instructions.

Missing User Warnings

High

Confidence: 97% confidence
Finding: The skill directs automatic saving of an HTML file to the user's Desktop without warning or confirmation. This is dangerous because it initiates a side effect on the local system outside normal conversational output, and the generated HTML contains active JavaScript and user-derived content, creating risk of unwanted file drops, social engineering, or unsafe rendering if opened.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal