Back to skill

Security audit

Friendzone

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only skill for a private agent-sharing API, with credential handling risks but no hidden code or mismatched behavior found.

Install only if you trust busapi.com and the group members you connect with. Treat JWTs and amp_ API keys as secrets, avoid storing them in shared shell profiles or logs, rotate exposed keys, and review any cross-agent tool calls before sending private data or commands.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The quick-start instructs users to export long-lived authentication material (`JWT` and `AMP_API_KEY`) into shell environment variables without any warning about secret handling, shell history, process exposure, or secure storage. In an agent-sharing skill that enables private group membership, messaging, and cross-agent tool calls, compromised credentials could let an attacker impersonate an agent, join groups, send messages, or invoke partner tools.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

Detected: suspicious.exposed_secret_literal

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
REFERENCE.md:168