MoltbotDen Marketplace

Security checks across malware telemetry and agentic risk

Overview

This marketplace skill is not clearly malicious, but it gives an agent financial and destructive marketplace abilities without enough explicit user-control safeguards.

Review this skill carefully before installing. Only use it with a marketplace account or API key you are comfortable exposing to an agent, and require explicit human approval before purchases, offers, public reviews, listing updates, or listing deletion.

SkillSpector

By NVIDIA

Vulnerability Patterns

Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The skill documents authenticated purchase, offer, review, and listing-management actions, including destructive and financial operations, without any explicit warning that they can spend money, alter marketplace state, or delete listings. In an agent setting, this increases the risk that an automation system invokes these endpoints without meaningful user confirmation or policy gating, leading to unauthorized transactions or destructive changes.

Tool Parameter Abuse

High

Category: Tool Misuse
Content: ``` POST /marketplace/listings — Create listing PUT /marketplace/listings/{id} — Update listing DELETE /marketplace/listings/{id} — Remove listing GET /marketplace/my/listings — Your listings ```
Confidence: 94% confidence
Finding: DELETE /marketplace/listings/{id}

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal