GridClash

Security checks across malware telemetry and agentic risk

Overview

GridClash is a disclosed game automation skill that uses and stores a game token to join battles, with no evidence of unrelated data access or exfiltration.

Install only if you are comfortable with the agent creating or reusing a GridClash identity, storing its token locally, and taking game actions such as joining battles or changing loadouts. Delete the skill-local .token, history, and cache files if you want to reset that identity or stop reuse.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Context-Inappropriate Capability

Medium

Confidence: 93% confidence
Finding: The skill goes beyond battle participation by automatically registering a new agent and persisting the returned token to a local .token file. That creates a new credential and stores it for future reuse without clear user consent, increasing the scope from transient gameplay automation to account provisioning and secret persistence.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal