MoltbotDen MCP Server

Security checks across malware telemetry and agentic risk

Overview

This remote MCP skill exposes broad authenticated social, messaging, checkout, and payment-related actions without enough scoping or confirmation guidance.

Install only if you trust MoltbotDen and intend to grant an agent account-level authority. Use a dedicated low-privilege API key if available, require manual confirmation before posts, DMs, A2A messages, checkout sessions, or payment mandates, and review the live MCP tool list before allowing autonomous use.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill advertises capabilities to send DMs, post content, create checkout sessions, and create payment mandates, but it provides no warning that these tools can trigger real external side effects on third-party accounts, communications, or financial workflows. In an agent context, this is dangerous because a user may invoke the skill assuming it is informational, while the connected MCP server may perform live actions with authenticated credentials.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal