Security audit
Prompt Optimizer
Security checks across malware telemetry and agentic risk
Overview
This skill appears to be a local prompt-improvement helper with no hidden network, credential, persistence, or destructive behavior.
Before installing, verify you trust the publisher because the package metadata is inconsistent. When using the CLI, quote prompt and technique arguments carefully, especially if the prompt contains shell metacharacters. The inspected skill otherwise stays local and does not appear to access private data or modify your system.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
No VirusTotal findings
