Doc2md

Security checks across malware telemetry and agentic risk

Overview

The skill is a disclosed document-conversion workflow that uses a configured API, but users should verify the endpoint and avoid sensitive documents unless they trust it.

Before installing or using this skill, confirm that the referenced CLI files are actually present in the package you receive. Only set DOC2MD_API_BASE_URL to an endpoint you trust or control, treat DOC2MD_BEARER_TOKEN as a secret, and avoid recursive conversion of folders containing sensitive, regulated, or unrelated documents unless you are comfortable uploading their contents to that API.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: The skill instructs users to send local PDF, DOCX, and PPTX files to a remote doc2md API, but it does not clearly warn that full document contents leave the local machine during conversion. This can mislead users into transmitting sensitive or regulated data to an external service, especially since the examples normalize use of a network API and even include a non-local API base URL.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal