Maomao Weather Hnlq

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward weather lookup skill that sends city names to Open-Meteo APIs and does not show hidden persistence, credential access, or destructive behavior.

Before installing, understand that weather queries may contact Open-Meteo with the city name you ask about. This skill appears suitable for normal use, but users who want strict control over external requests may prefer invoking it only for explicit weather lookups.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 92% confidence
Finding: The skill declares only Bash as an allowed tool, but the documented execution path invokes a Python script that almost certainly performs outbound network access to geocode cities and fetch weather data. If network capability is not explicitly declared, operators and policy controls may underestimate what the skill can do, reducing transparency and weakening permission-based review.

Vague Triggers

Medium

Confidence: 79% confidence
Finding: The trigger description is broad enough to match ordinary weather-related conversation, which can cause the skill to auto-activate in situations the user did not clearly intend. This is primarily a security-boundary and consent problem: an over-broad trigger may cause unnecessary tool execution and external data requests without explicit invocation.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal