Mouse Colony Planner

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward local command-line calculator for mouse breeding timelines, cage counts, and costs, with no evidence of hidden data access or unsafe behavior.

Install and run it in a virtual environment. Consider removing or pinning the unnecessary dataclasses and enum dependencies, and verify the wet-lab assumptions before relying on the generated colony plan.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

Low

Confidence: 86% confidence
Finding: The skill documentation explicitly states that output files are written to the workspace, but it does not specify the exact output path, naming behavior, overwrite policy, or require user confirmation before writing. This can lead to unintended file creation or overwriting in local environments, especially because the skill is a local script with file system access and the security checklist item restricting output to the workspace is not actually confirmed.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal