Security researchers have revealed a concerning vulnerability in AI agent skill marketplaces, where a fake AI skill managed to bypass all security scanners and reach nearly 26,000 agents. The test was conducted by security firm AIR, which developed and deployed a mock AI agent with no malicious intent, but designed to expose weaknesses in current security protocols.
How the Bypass Worked
AIR created a seemingly legitimate AI skill and submitted it to a widely used marketplace, where it was promoted via an Instagram ad. The skill was crafted to appear safe and functional, fooling even advanced security scanners. The researchers noted that every tool they tested—including automated malware detection and manual code review—marked the skill as safe, despite its deceptive nature.
Implications for AI Security
This incident underscores a critical gap in the growing AI agent ecosystem. As more businesses adopt AI-powered assistants and skill marketplaces expand, the risk of malicious actors exploiting these platforms increases. The fact that the fake skill reached corporate accounts highlights the potential for real-world impact, even if the payload was harmless. Experts warn that without stronger vetting processes, AI agent platforms could become vectors for phishing, data theft, or other cyber threats.
What’s Next?
AIR’s findings call for immediate action from platform providers and AI developers. The incident serves as a wake-up call to the industry, emphasizing the need for more robust and dynamic security frameworks that can detect subtle threats in AI agent behavior. As AI becomes more embedded in enterprise workflows, the stakes for securing these platforms continue to rise.



