Back to skill

Security audit

WLS运行时工程师 WLS进程稳定

Security checks across malware telemetry and agentic risk

Overview

This is a markdown-only WLS runtime troubleshooting skill with scoped process-lifecycle guidance and cleanup safeguards.

Install is reasonable for WLS runtime work. Review any process start/reload/restart/stop commands before running them, use a controlled test environment, avoid port 9501 as instructed, and confirm cleanup after validation.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Vague Triggers

Medium
Confidence
88% confidence
Finding
The activation guidance includes very broad runtime and process-related keywords such as 'worker', 'dispatcher', and 'process', which can cause the skill to be selected outside its intended scope. In an agentic environment, overbroad routing can lead to unsafe process-control actions, misapplied runtime guidance, or inappropriate authority over lifecycle operations, especially because this skill discusses restart/reload behavior and process cleanup.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.