Back to skill

Security audit

Dark Social Attributor

Security checks across malware telemetry and agentic risk

Overview

This skill gives marketing-attribution guidance and only asks to read user-provided analytics data and save results with user confirmation.

Before installing, be aware that the skill is intended to work with analytics exports and may save attribution notes into local memory only after confirmation. Do not provide sensitive customer data unless it is appropriate for your workspace, and verify any proxy estimates before using them for business decisions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.