Dpi Upscaler Checker

Security checks across malware telemetry and agentic risk

Overview

The image upscaling skill mostly matches its purpose, but its dependency list could install unintended Python packages before the user ever runs the tool.

Install only in a disposable virtual environment after cleaning up and pinning requirements.txt, preferably keeping only canonical packages like pillow, numpy, opencv-python, and realesrgan. When running it, point it at a specific image folder and a dedicated output directory to avoid bulk processing or overwriting files unintentionally.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

Low

Confidence: 78% confidence
Finding: The documentation states that the tool supports batch upscaling and writes output files, but it does not prominently warn that bulk operations may create many files or overwrite outputs depending on path selection and naming behavior. This is a real, though low-severity, safety issue because users may unintentionally trigger large-scale file modifications without understanding the consequences.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal