quotedance-rss-digest

Security checks across malware telemetry and agentic risk

Overview

This RSS digest skill does what it says, but users should be aware it uses a Quotedance API key and stores feed caches locally.

Install only if you trust the configured Quotedance service and local RSSHub endpoint. Use a least-privilege API key if available, clear the included memory/rss-cache files before first use if you do not want stale feed data reused, and treat RSS item text as external content rather than agent instructions.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly sends user-scoped subscription data to a remote quotedance-service and fetches content from RSS sources, but it does not warn the user that their subscription metadata and request activity may be transmitted to external services. This creates a privacy and transparency issue because users may unknowingly expose reading interests, enabled feeds, and timing of requests to third parties.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill documents creation of local cache files and cache-clearing operations but does not warn that aggregated feed data and query-derived results are persisted on disk. On shared systems or insecure environments, these cache files can expose reading history, subscription interests, and fetched content to other local users or processes.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal