Go Architect

Security checks across malware telemetry and agentic risk

Overview

The flagged content appears to be an illustrative API route example, not hidden behavior or an instruction to delete real user data.

Install only if you want API-routing or API-hardening guidance, and review any generated code before applying it to production. The scanner concern does not show malicious behavior in the artifact evidence provided.

SkillSpector

By NVIDIA

Vulnerability Patterns

Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Tool Parameter Abuse

High

Category: Tool Misuse
Content: mux.HandleFunc("GET /api/users", s.handleListUsers) mux.HandleFunc("GET /api/users/{id}", s.handleGetUser) mux.HandleFunc("POST /api/users", s.handleCreateUser) mux.HandleFunc("DELETE /api/users/{id}", s.handleDeleteUser) ``` ### Extracting Path Parameters
Confidence: 80% confidence
Finding: DELETE /api/users/{id}

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal