Workflows
Security checks across malware telemetry and agentic risk
Overview
This is an instruction-only workflow playbook that documents powerful workflow capabilities but also discloses them clearly and frames them with safety guidance.
Install is reasonable for users who understand that workflows created from this playbook can run commands, call tools, read/write files, query SQL, and persist logs or KV data. Before running any workflow, review its definition, keep permissions narrow, avoid direct interpolation of untrusted input into commands or SQL, and do not put secrets into inputs, logs, artifacts, or KV entries.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.