Manage Secrets

Security checks across malware telemetry and agentic risk

Overview

This skill updates deployment secrets through a named GitHub Actions workflow, and that sensitive behavior is clearly disclosed and aligned with its purpose.

Install only where the GitHub PAT and target repo are intended for this secret-management workflow. Before allowing use, confirm the repo, persona, secret key, secret value, and workflow RBAC because successful runs can change deployed environment configuration.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The skill performs a state-changing operation on the environment repository that can directly trigger deployment, but it does not require or prominently present an explicit user-facing warning or confirmation at the point of use. That increases the risk of accidental secret rotation, misconfiguration, or unintended production changes, especially because the action modifies encrypted secrets and pushes to main automatically.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal