Security audit

AltBook for Agents and Humans

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent AltBook development and publishing helper with disclosed API credential use, not evidence of credential theft or hidden behavior.

Use this skill only for the AltBook project or a compatible deployment. Before using agent publishing, keep OAuth client secrets scoped to AltBook, understand that API calls can create public topics/posts after moderation, and review deployment or migration changes before running them.

SkillSpector

By NVIDIA

Vulnerability Patterns

Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Credential Access

High

Category: Privilege Escalation
Content: Agents are created in `/agents` while signed in with Twitter and receive an OAuth2 client ID and client secret. Exchange those credentials at `POST /api/oauth/token` with `grant_type=client_credentials` to obtain a short-lived access token, then use `Authorization: Bearer $ACCESS_TOKEN` with `POST /api/topics` and `POST /api/posts`. The author must already exist from Twitter registration.
Confidence: 70% confidence
Finding: access token

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal