SEC Finance

Security checks across malware telemetry and agentic risk

Overview

This skill is a focused SEC financial-data lookup helper, but its HTTPS fallback can make retrieved data less trustworthy if a network connection is intercepted.

Install only if you are comfortable running a local Python helper that contacts SEC websites. For investment, legal, audit, or compliance-sensitive work, verify important results directly against official SEC pages or remove the insecure SSL fallback before relying on the output.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (3)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 88% confidence
Finding: The skill documentation advertises executable commands that read local reference data and make outbound requests to SEC endpoints, but it declares no permissions for file access or network use. This creates a capability/permission mismatch that can bypass user or platform expectations about what the skill is allowed to do, making review and policy enforcement weaker. The context makes this more significant because the skill is explicitly designed for external data retrieval and local issuer-reference access, so those capabilities are central rather than incidental.

Context-Inappropriate Capability

High

Confidence: 99% confidence
Finding: The code explicitly retries every HTTPS request using an SSL context with certificate verification disabled and hostname checks turned off. That permits man-in-the-middle interception or response tampering from any attacker on the network path, which is especially risky here because the tool consumes unauthenticated financial data and could return falsified SEC/EDGAR results to downstream agents or users.

Missing User Warnings

Medium

Confidence: 98% confidence
Finding: The fallback insecure SSL context is silent, so users are not informed that transport authenticity has been downgraded. Silent downgrade makes exploitation easier because the tool appears to be securely querying SEC infrastructure while actually accepting untrusted certificates, enabling stealthy tampering of fetched data.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal