N-central Admin
Security checks across malware telemetry and agentic risk
Overview
The inspected skills are developer and maintainer workflows whose elevated actions are disclosed and mostly gated by user intent.
Install only if you intend to use ClawHub/Convex maintainer workflows. Review the autoreview defaults before use because it can run nested review tooling with broad local authority and may send diffs to configured external reviewer CLIs; use its no-yolo or fallback controls if that is not acceptable.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.