Ai Trend Curation

Security checks across malware telemetry and agentic risk

Overview

The skill’s goal is understandable, but it can post agent-curated content to Slack and tells the agent to run a helper script that is not included in the reviewed package.

Review before installing. Only use this if you can verify the missing `scripts/ai_trends.js` from a trusted source and configure Slack posting to a known channel with a preview-and-approve step. Use the least-privilege Slack identity because the skill may post messages visible to others.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 87% confidence
Finding: The skill includes sending curated content to Slack, an external service, without an explicit user-facing warning or consent step. This is dangerous because users may trigger outbound transmission of third-party content, summaries, and potentially sensitive internal context to a workspace or channel they did not intend, increasing the risk of data leakage and compliance issues.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal