Agent Plus

Security checks across malware telemetry and agentic risk

Overview

This is a non-executable agent-personality guide with disclosed personalization guidance, though users should be careful about any optional cross-session memory use.

Installers should treat the memory/profile sections as optional personalization guidance: only retain preferences or history with user consent, avoid storing sensitive details or credentials, and provide a way to review or clear remembered information.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill explicitly encourages remembering user preferences across sessions and maintaining a profile containing expertise, communication style, interests, history, and feedback, but it provides no constraints around consent, minimization, retention, access control, or sensitive-data handling. In an agent framework, this can lead to silent collection and persistence of personal data, creating privacy risk and potential policy noncompliance even if the feature is intended for personalization.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal