Back to skill

Security audit

Narrative Registry

Security checks across malware telemetry and agentic risk

Overview

This skill is a scoped brand-narrative record keeper that writes project memory files after user consent and shows no evidence of hidden execution, credential use, or exfiltration.

Before installing, understand that this skill is meant to persist brand narrative decisions into project memory. Use it only in projects where storing positioning, voice, naming rules, boilerplate, and version history is acceptable, and review the first proposed memory write before approving it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.