Cognitive Debt Guard
Security checks across malware telemetry and agentic risk
Overview
This is an instruction-only code review guidance skill with no executable code, credentials use, or hidden data access.
Before installing, treat this as opinionated process guidance rather than enforcement. Review whether the MEMORY.md practice, AI-free zones, and strict PR limits fit your team, and consider restricting automatic invocation if the broad triggers become noisy.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
67/67 vendors flagged this skill as clean.