PMC Harvest
Security checks across malware telemetry and agentic risk
Overview
PMC Harvest is a coherent PubMed Central retrieval helper with disclosed NCBI/PMC network access and no evidence of credential use, persistence, or hidden behavior.
Reasonable to install if you are comfortable with your literature searches and requested PMC IDs being sent to NCBI/PMC. Review future versions before automated batch use, especially because no upstream source or homepage is listed.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.