Back to skill

Security audit

Tetra Scar Code Review

Security checks across malware telemetry and agentic risk

Overview

This is a local Python code-review helper whose file reading, local scar storage, and test fixtures match its stated purpose.

Safe to install as a local Python review helper. Keep review_scars.jsonl under your control, avoid putting real secrets in scar descriptions or patterns, and review broad scar regexes before using this in CI because they can intentionally block changes.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Lp3

Medium
Category
MCP Least Privilege
Confidence
94% confidence
Finding
The skill declares no permissions, yet its documented usage clearly involves reading files, writing scar records, and executing Python via shell commands; the analyzer also detected env, network, and shell-capable behavior. This mismatch is dangerous because users and policy engines may trust the undeclared permission set and run the skill with broader access than expected, reducing transparency and weakening least-privilege controls.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

Detected: suspicious.dynamic_code_execution, suspicious.exposed_secret_literal

Dynamic code execution detected.

Critical
Code
suspicious.dynamic_code_execution
Location
test_scar_code_review.py:121

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
test_scar_code_review.py:87