围棋定式数据库

Security checks across malware telemetry and agentic risk

Overview

This skill is a Go joseki database tool that openly downloads public KataGo game archives and stores generated data locally, with no evidence of hidden exfiltration or unsafe persistence.

Install only if you intend to download and process large public KataGo SGF archives. Before running auto mode, check available disk space, consider using --limit or --download-only for testing, and keep ~/.weiqi-joseki in a location where large cache files are acceptable.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (3)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 94% confidence
Finding: The skill documentation advertises filesystem and network behavior but does not declare permissions accordingly. This is dangerous because users or hosting platforms may assume the skill is local-only while it can read/write under the home directory and fetch remote archives, weakening consent and sandboxing expectations.

Tp4

High

Category: MCP Tool Poisoning
Confidence: 96% confidence
Finding: The description emphasizes 'fully local storage' but the documented behavior includes remote access to katagoarchive.org, incremental synchronization based on remote state, and local export/discovery operations. This mismatch is security-relevant because it can mislead users into granting trust to a skill they believe is offline-only, increasing the chance of unintended network use and large local modifications.

Missing User Warnings

Low

Confidence: 83% confidence
Finding: The skill documents automatic downloading and substantial local storage consumption, including caches that can grow to tens or hundreds of gigabytes, without a strong up-front warning before invocation. This can cause denial-of-service-like effects on user systems through disk exhaustion or unexpected writes, especially in shared or constrained environments.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal