Financial Times Deep Reader

Security checks across malware telemetry and agentic risk

Overview

The skill does what it advertises, but it asks the agent to use stored Financial Times login credentials and keep a persistent browser session without clear limits or cleanup guidance.

Review before installing. Use only with a dedicated FT account or explicitly approved session, avoid placing real passwords in SKILL.md, isolate the browser profile, and clear the session when finished. The concern is account/session exposure and reuse, not hidden code or exfiltration.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The skill explicitly instructs automated login to FT.com using stored credentials and even names a persistent browser profile, but provides no user warning, consent flow, or privacy boundary. This creates a real risk of unauthorized account use, unintended access to subscription content, and exposure of session state or credentials through the automation environment.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal