GoldenSeed
Security checks across malware telemetry and agentic risk
Overview
GoldenSeed appears to be a straightforward helper for reproducible pseudo-random data, with the main caution that it installs an unpinned third-party Python package and should not be used for security randomness.
Install it like any third-party Python package: prefer a virtual environment, review or pin `golden-seed` for controlled builds, and avoid privileged installs unless necessary. Use it for reproducible tests or procedural generation only, not for passwords, keys, tokens, cryptography, or security-sensitive randomness.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
62/62 vendors flagged this skill as clean.