Doctorbot Ci Validator
Security checks across malware telemetry and agentic risk
Overview
This skill is a simple CI/YAML validation guide with no executable code in the reviewed package, but users should verify any referenced scripts separately because they are not included.
Before installing or using this skill, understand that the reviewed package is only documentation. If you run validator scripts with these names, confirm they came from the intended project and inspect them first. The reviewed skill text itself does not show hidden behavior, credential access, persistence, exfiltration, or destructive actions.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
49/49 vendors flagged this skill as clean.