news-skill

Security checks across malware telemetry and agentic risk

Overview

This skill fetches public daily news from a disclosed third-party API and does not show hidden access, persistence, or destructive behavior.

Use this skill if you are comfortable with news dates and article IDs being sent to api.cjiot.cc. The main caveat is that broad news-related trigger words may invoke it during ambiguous conversations, so users should avoid mixing sensitive private context into news requests.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The trigger conditions are overly broad, especially matching generic keywords like “新闻”, “日报”, “头条”. This can cause the skill to activate on unrelated conversations and send user queries to an external API unexpectedly, creating privacy and routing risks even though the skill’s purpose itself is benign.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal