Security audit
Narrative Registry
Security checks across malware telemetry and agentic risk
Overview
This skill is a scoped brand-narrative record keeper that writes project memory files after user consent and shows no evidence of hidden execution, credential use, or exfiltration.
Before installing, understand that this skill is meant to persist brand narrative decisions into project memory. Use it only in projects where storing positioning, voice, naming rules, boilerplate, and version history is acceptable, and review the first proposed memory write before approving it.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
