Incident Postmortem Framework
Security checks across malware telemetry and agentic risk
Overview
This is a simple postmortem-writing skill that works on user-provided incident notes and does not request system access or hidden execution.
Before using it, sanitize incident notes and copied Slack or PagerDuty text. Remove secrets, tokens, customer personal data, credentials, hostnames, and confidential details that are not necessary for the postmortem, then review the generated document before sharing or publishing.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.