masterchef

Security checks across malware telemetry and agentic risk

Overview

This appears to be a recipe lookup skill that sends dish or ingredient terms to a disclosed external recipe API, with no evidence of hidden persistence, credential access, or destructive behavior.

Before installing, be comfortable with dish names or ingredient lists being sent to api.yummy.chat. Avoid using it with sensitive personal context, and prefer clear recipe requests so the skill is not invoked during general food conversation.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (7)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: The top-level description uses broad terms like cooking, ingredients, dish, meal, and cuisine, which can cause the skill to activate for general food-related conversation rather than clear recipe-intent requests. Over-broad activation can route unrelated user prompts to a tool-using skill, increasing unnecessary external calls and unintended data disclosure to the third-party API.

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The 'When to Use This Skill' section contains vague cues such as 'want to eat X' and broad keyword matching, without guardrails for when the user is merely discussing food rather than requesting a recipe lookup. This makes accidental invocation more likely and can trigger unnecessary network requests to an external service based on weak intent signals.

External Transmission

Medium

Category: Data Exfiltration
Content: 2. **Call API**: ```bash curl -s -X POST https://api.yummy.chat/ingredients \ -H "Content-Type: application/json" \ -d '{"ingredients": ["食材1", "食材2"]}' ```
Confidence: 84% confidence
Finding: curl -s -X POST https://api.yummy.chat/ingredients \ -H "Content-Type: application/json" \ -d '{"ingredients": ["食材1", "食材2"]}' ``` 3. **Parse response**: Extract `dishes` list from each ingredie

External Transmission

Medium

Category: Data Exfiltration
Content: ### 1. Ingredient Search API **Endpoint**: `POST https://api.yummy.chat/ingredients` **Purpose**: Query dishes that can be made with 1-3 ingredients
Confidence: 82% confidence
Finding: https://api.yummy.chat/

External Transmission

Medium

Category: Data Exfiltration
Content: ### 2. Recipe Lookup API **Endpoint**: `POST https://api.yummy.chat/howtocook` **Purpose**: Query detailed recipe by dish name (ingredients, steps, tips)
Confidence: 82% confidence
Finding: https://api.yummy.chat/

External Transmission

Medium

Category: Data Exfiltration
Content: 2. **Call API**: ```bash curl -s -X POST https://api.yummy.chat/ingredients \ -H "Content-Type: application/json" \ -d '{"ingredients": ["食材1", "食材2"]}' ```
Confidence: 84% confidence
Finding: https://api.yummy.chat/

External Transmission

Medium

Category: Data Exfiltration
Content: 2. **Call API**: ```bash curl -s -X POST https://api.yummy.chat/howtocook \ -H "Content-Type: application/json" \ -d '{"dish_name": "菜名"}' ```
Confidence: 84% confidence
Finding: https://api.yummy.chat/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal