Review Python
Security checks across malware telemetry and agentic risk
Overview
This is a coherent Python/FastAPI code-review skill that asks the agent to inspect repository changes and run local review tools, with no hidden install code or credential handling.
Before installing, be comfortable with the agent reading repository code and running local review commands such as git, grep, ruff, mypy, and pytest. Also ensure you trust the referenced delegated review skills, since this skill instructs the agent to load them when applicable.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.