Smart README Generator

Security checks across malware telemetry and agentic risk

Overview

This is a small README-generation skill whose behavior matches its stated purpose, with ordinary caution needed before replacing existing documentation.

Review the generated README as a draft or diff before applying it, and explicitly confirm any replacement of an existing README.md or related documentation files, especially in private or carefully maintained repositories.

Publisher note

Skill uses network access to analyze repository structure and generate high-quality README.md documentation automatically. No sensitive data collection.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The skill advertises generating README.md and related documentation artifacts but does not warn users that existing README-related files in their repository may be created or overwritten. In a repository context, undocumented write/overwrite behavior can cause accidental loss of documentation changes, confusing diffs, or unintended modification of tracked files.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal