Security audit
Dark Social Attributor
Security checks across malware telemetry and agentic risk
Overview
This skill gives marketing-attribution guidance and only asks to read user-provided analytics data and save results with user confirmation.
Before installing, be aware that the skill is intended to work with analytics exports and may save attribution notes into local memory only after confirmation. Do not provide sensitive customer data unless it is appropriate for your workspace, and verify any proxy estimates before using them for business decisions.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
61/61 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
