Minimax Usage

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward MiniMax usage checker that uses a user-provided MiniMax API key to query MiniMax usage and print the result.

Before installing, confirm you are comfortable storing a MiniMax Coding Plan key in your environment and sending it to MiniMax’s API. Prefer installing dependencies in a virtual environment and consider pinning requests to a reviewed current version for reproducible installs.

SkillSpector

By NVIDIA

Vulnerability Patterns

Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Unpinned Dependencies

Low

Category: Supply Chain
Content: requests>=2.28.0
Confidence: 96% confidence
Finding: requests>=2.28.0

Known Vulnerable Dependency: requests — 10 advisory(ies): CVE-2014-1830 (Exposure of Sensitive Information to an Unauthorized Actor in Requests); CVE-2024-47081 (Requests vulnerable to .netrc credentials leak via malicious URLs); CVE-2024-35195 (Requests `Session` object does not verify requests after making first request wi) +7 more

High

Category: Supply Chain
Confidence: 90% confidence
Finding: requests

VirusTotal

No VirusTotal findings

View on VirusTotal