Felo Slides

Security checks across malware telemetry and agentic risk

Overview

The skill generates slides through Felo as advertised, but it should be reviewed because an undocumented API-base override could redirect prompts and the Felo API key away from the documented Felo endpoint.

Review before installing if you keep FELO_API_KEY in your environment. Use it only for slide content you are comfortable sending to Felo, and check that FELO_API_BASE is unset or points to the expected Felo API endpoint before running the skill.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The README explicitly encourages sending user prompts to a third-party API but does not warn that prompt contents may leave the local environment and be processed by Felo. In an agent skill context, users may assume requests stay within Claude Code unless told otherwise, so sensitive business data, credentials, or personal information could be transmitted unintentionally.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill instructs the agent to send arbitrary user prompts to Felo's external API, but it does not require notifying the user that their content will leave the local environment. This can lead to unintended disclosure of sensitive data, proprietary material, or personal information when users ask to convert notes or internal content into slides.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal