Security audit

市场机会侦察兵

Security checks across malware telemetry and agentic risk

Overview

This skill is a market-report generator that makes limited public market-data requests and does not show credential access, destructive behavior, or hidden persistence.

Install only if you are comfortable with a local script making public market-data network requests. Avoid adding untrusted input to the shell helper, review or pin any manually installed Python dependencies, and only add the cron entry if you want recurring reports.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Behavioral ASTexec() Call, eval() Call, Dynamic Import
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

subprocess module call

Medium

Category: Dangerous Code Execution
Content: def run_command(cmd): """执行 shell 命令并返回结果""" try: result = subprocess.run(cmd, shell=True, capture_output=True, text=True, timeout=30) return result.stdout.strip() except Exception as e: return f"Error: {e}"
Confidence: 97% confidence
Finding: result = subprocess.run(cmd, shell=True, capture_output=True, text=True, timeout=30)

Context-Inappropriate Capability

High

Confidence: 98% confidence
Finding: The helper function run_command is a generic arbitrary shell execution primitive, which is broader than needed for a skill that only gathers market data and prints a report. This creates unnecessary attack surface: any future modification or indirect input flow into cmd could turn the skill into a command-execution vehicle.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.