Search papers, labs, and topics across Lattice.
The authors performed a security analysis of 3,984 AI agent skills from major marketplaces, identifying 76 confirmed malicious payloads ranging from credential theft to backdoor installation. They found that 13.4% of skills contain critical security vulnerabilities, and confirmed malicious skills remain available on public marketplaces. This work highlights the urgent need for automated security analysis as AI agent skill ecosystems expand and gain access to sensitive resources.
Public AI agent skill marketplaces are riddled with security holes, with over 13% of skills containing critical vulnerabilities and confirmed malicious payloads still available.
We analyzed 3,984 AI agent skills from major marketplaces and found 76 confirmed malicious payloads, including credential theft, backdoor installation, and data exfiltration. 13.4% of all skills contain at least one critical-level security issue and at least 8 manually confirmed malicious skills remain publicly available on clawhub.ai as of the date of publication. This report documents our methodology, presents a threat taxonomy based on real-world samples, and details the attack patterns we observed. As skill marketplaces grow rapidly and AI agents gain access to sensitive credentials and systems, automated security analysis is no longer optional.
