Binance ICT Structure Recognizer
Security checks across malware telemetry and agentic risk
Overview
This skill pack is mostly coherent for ClawHub and Convex maintainer workflows, but one bundled review helper defaults to running nested agent review with full filesystem and command access.
Install only if you trust the publisher and intend to use these ClawHub/Convex maintainer workflows. Before running the autoreview helper, prefer `--no-yolo` or `AUTOREVIEW_YOLO=0` unless you deliberately want nested review commands to have full access. Treat moderation, PR publishing, role changes, and remote UI proof commands as live administrative actions and review the exact command before approving them.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.