STM32 AI Assistant

Security checks across malware telemetry and agentic risk

Overview

This STM32 coding helper is mostly coherent, but it includes an under-disclosed flash-writing template that can erase device memory if a user adopts the generated code.

Install only if you are comfortable reviewing generated embedded code before using it. Treat any FLASH output as advanced and hardware-specific: verify the target sector/address, backups, linker layout, calibration data, and erase/program return values before compiling or flashing it to a board.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (4)

Description-Behavior Mismatch

Medium

Confidence: 91% confidence
Finding: The template includes functionality to unlock flash, erase a sector, and program persistent memory, which materially exceeds the stated skill scope of register lookup and HAL initialization code generation. In an agent-assisted setting, this broadens the action surface to destructive device modification that could be suggested or emitted without adequate user intent verification, leading to firmware/data loss or device misconfiguration.

Intent-Code Divergence

Medium

Confidence: 92% confidence
Finding: The template is mislabeled as an STM32F407 LPTIM configuration even though STM32F407 does not provide LPTIM and the implementation actually uses RTC alarm wakeup. In an embedded code-generation skill, this kind of semantic mismatch can mislead developers into enabling or depending on the wrong peripheral, causing incorrect low-power behavior, integration mistakes, or unsafe assumptions in power-management code.

Intent-Code Divergence

Medium

Confidence: 90% confidence
Finding: The header states a 1-second periodic wakeup, but the code schedules an alarm one minute later by incrementing the Minutes field. In embedded low-power applications, timing discrepancies can break watchdog servicing, sampling intervals, radio duty cycles, or safety-critical wake schedules, making the generated code unreliable and potentially hazardous in context.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The code performs destructive persistent storage operations by erasing sector 7 and writing flash contents without any warning, safety checks, or disclosure of irreversibility. In the context of an AI coding assistant for STM32 development, this is dangerous because users may treat generated templates as safe boilerplate and inadvertently erase application code, configuration, or calibration data.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal