Back to skill

Security audit

市场机会侦察兵

Security checks across malware telemetry and agentic risk

Overview

This skill is a market-report generator that makes limited public market-data requests and does not show credential access, destructive behavior, or hidden persistence.

Install only if you are comfortable with a local script making public market-data network requests. Avoid adding untrusted input to the shell helper, review or pin any manually installed Python dependencies, and only add the cron entry if you want recurring reports.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Behavioral ASTexec() Call, eval() Call, Dynamic Import
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

subprocess module call

Medium
Category
Dangerous Code Execution
Content
def run_command(cmd):
    """执行 shell 命令并返回结果"""
    try:
        result = subprocess.run(cmd, shell=True, capture_output=True, text=True, timeout=30)
        return result.stdout.strip()
    except Exception as e:
        return f"Error: {e}"
Confidence
97% confidence
Finding
result = subprocess.run(cmd, shell=True, capture_output=True, text=True, timeout=30)

Context-Inappropriate Capability

High
Confidence
98% confidence
Finding
The helper function run_command is a generic arbitrary shell execution primitive, which is broader than needed for a skill that only gathers market data and prints a report. This creates unnecessary attack surface: any future modification or indirect input flow into cmd could turn the skill into a command-execution vehicle.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.