AIR created a fake AI agent skill called brand-landingpage and used GitHub stars, a marketplace merge, and an Instagram ad to make it look trustworthy, eventually reaching about 26,000 agents. The experiment showed that scanners from Cisco, NVIDIA, and skills.sh missed the threat because the malicious logic lived behind an external link that could be changed after review. #AIR #brand-landingpage #Cisco #NVIDIA #skills.sh #TrailofBits #Anthropic
Keypoints
- AIR built a fake AI skill to test trust signals in agent marketplaces.
- The skill passed scanners from Cisco, NVIDIA, and skills.sh as safe.
- GitHub stars and marketplace reputation were used to make the skill look credible.
- The real payload was hidden behind an external link that could be swapped later.
- The demo showed how agents can be exposed when skills are treated as trusted instructions.
Read More: https://thehackernews.com/2026/06/fake-ai-agent-skill-passed-security.html