ACT Runtime
Security checks across malware telemetry and agentic risk
Overview
This skill is a transparent ACT CLI helper for running WebAssembly component tools, with disclosed cautions around remote components and filesystem grants.
Install only if you trust the ACT CLI and the WebAssembly components you run. Prefer pinned or trusted component references, inspect tools with act info first, and grant only the narrow directory access needed instead of using full filesystem access by default.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.