The Molt Reader

Security checks across malware telemetry and agentic risk

Overview

This is a narrow read-only reader skill for public The Molt content and the artifacts do not show code execution, credential use, or state changes.

This skill should be safe to install if you want an agent to fetch and summarize public The Molt pages. The main thing to keep in mind is that it depends on live website content, so agents should continue following the skill's instruction to treat fetched article text as content, not as commands.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Scope Creep

Low

Category: Excessive Agency
Content: copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
Confidence: 70% confidence
Finding: NOT LIMITED TO

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal