weather-cn-fixed

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Chinese weather tool, but it evaluates weather data parsed from a website as shell code, which creates unnecessary command-execution risk.

Review or patch weather-cn.sh before installing, especially the eval path. The skill appears intended to fetch and print Chinese weather data, but it should parse returned values without eval and treat website content as untrusted. VirusTotal was pending and the static scan was clean, so the decision rests on the verified script behavior.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Context-Inappropriate Capability

High

Confidence: 98% confidence
Finding: The script builds key=value lines from parsed remote HTML and then executes them with eval in format_output. Because the weather page content is untrusted network data, an attacker who can influence the upstream response or parsing output could inject shell metacharacters or command substitutions and achieve arbitrary command execution on the host.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal