Back to skill

Security audit

Wdh

Security checks across malware telemetry and agentic risk

Overview

This skill appears to do what it says: upload or publish user-selected files to shareable public links, with privacy caution needed before use.

Install only if you intend to publish or share files/markdown through an external hosted URL. Review and redact content first, especially credentials, private notes, customer data, internal docs, and business-sensitive files.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill instructs users to upload local files and states only that it returns a public download URL, but it does not prominently warn that uploaded content becomes publicly accessible to anyone with the link. In an agent context, this increases the chance that sensitive local files are exposed because the model may treat the tool as a routine file-transfer utility without surfacing the privacy consequence.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The `md publish` command publishes a local markdown file as a hosted HTML page, but the documentation does not clearly warn that the file contents become publicly accessible on the internet. In an agent workflow, this omission can lead to accidental disclosure of notes, internal docs, credentials, or other sensitive content if a local markdown file is selected for convenience.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.