video-frame-extraction

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward OpenCV video-frame extraction guide; it can create many image files, but that behavior is disclosed and fits the purpose.

Install only if you need video frame extraction. Use trusted OpenCV dependencies, avoid running untrusted videos in sensitive environments, and set a specific output directory with enough free space because full-frame or batch extraction can generate many files.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Low

Confidence: 91% confidence
Finding: The skill encourages extracting potentially every frame from large videos and saving them all to disk, which can generate very large numbers of image files and consume substantial storage. Although the document mentions disk-space requirements and limitations later, it does not give an upfront operational warning or recommend guardrails such as output limits, quotas, or confirmation before high-volume extraction, so accidental filesystem exhaustion is plausible.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal