Data Migration Planner

Security checks across malware telemetry and agentic risk

Overview

This is a text-only data migration planning skill with no executable code or hidden system access, though real migrations still require careful human review.

Use this as a planning aid only. Before applying any generated runbook to real systems, confirm authorization, backups, tested rollback, non-production validation, downtime approval, least-privilege access, and privacy or compliance review for sensitive data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: This skill explicitly supports planning and execution of data migrations, which commonly involve sensitive, regulated, or business-critical data, yet it does not provide a clear warning or safety guidance about handling credentials, personal data, or regulated records. That omission can lead users or downstream agents to generate unsafe migration plans that overlook encryption, access controls, minimization, logging restrictions, retention limits, or compliance obligations during extraction, staging, transfer, and rollback.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal