Buzz

Security checks across malware telemetry and agentic risk

Overview

Buzz is a disclosed news-alert tool, but its default unauthenticated REST API can bind to all network interfaces and change alert configuration.

Install only if you are comfortable reviewing and running the external GitHub/Node project. Before starting it, set dashboard.password, restrict port 3848 to localhost or a trusted network, avoid exposing the dashboard publicly, and protect config.json because it may contain bot tokens, webhook URLs, and API keys.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Context-Inappropriate Capability

Medium

Confidence: 86% confidence
Finding: The skill requests broad local execution capability via the exec/read tools and the node, npm, and git binaries, even though the package metadata describes a news aggregation and notification function that does not inherently require arbitrary command execution or repository manipulation at the skill boundary. This expands the attack surface significantly: if the skill instructions or downstream content are adversarial, these capabilities could be used to run system commands, install packages, or fetch and execute untrusted code.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal