copywriting
Security checks across malware telemetry and agentic risk
Overview
No security concerns were identified from the supplied scan data, but the actual skill files were not available to inspect in this workspace.
The available telemetry is clean and VirusTotal is only pending, so there is no artifact-backed reason to hold this skill. Because the actual skill files were not present for review, users should still inspect the skill description and requested capabilities before installing, especially for any access to local files, credentials, accounts, or external services.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.