"Do Not Mention This to the User": Detecting and Understanding Malicious Agent Skills 事件

"Do Not Mention This to the User": Detecting and Understanding Malicious Agent Skills arXiv:2602.06547v3 Announce Type: replace-cross Abstract: LLM-based coding agents increasingly rely on third-party extensions called skills, which bundle natural language instructions and helper scripts that execute with full user privileges. Community registries have emerged to distribute these skills, but the security implications remain unstudied due to the absence of labeled threat data. This paper present