gov-data-governance-consultant
Security checks across malware telemetry and agentic risk
Overview
No harmful behavior was found in the available scan data, but the skill artifact itself was not available for deeper confirmation.
The available signals do not justify Review or malicious classification. Because the target artifact was not present for direct inspection, users should review the skill files and install instructions before installing, especially for network use, credential handling, file access, or automatic execution.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.