Alibaba Sourcing

Security checks across malware telemetry and agentic risk

Overview

The skill is a disclosed Alibaba supplier outreach assistant that uses logged-in browser automation and local conversation notes for its stated sourcing workflow.

Install only if you are comfortable letting an agent use your logged-in Alibaba session to inspect supplier messages, draft and send approved inquiries, and store negotiation notes locally. Review each outgoing message carefully before approval, and treat the local supplier-conversations folder as sensitive business data.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

Medium

Confidence: 84% confidence
Finding: The README explicitly states that generated Alibaba URLs include a tracking parameter for analytics and attribution, but it does not clearly disclose the privacy implications, whether any user- or query-derived data may be embedded in outbound links, or how users can disable the behavior. In a sourcing workflow, generated links may be widely shared or opened by third parties, so silent attribution tagging can create privacy, consent, and transparency issues even if the parameter appears low sensitivity on its own.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal