Pipeworx crates
Security checks across malware telemetry and agentic risk
Overview
This skill only configures a hosted MCP tool for looking up public Rust crate information, with no local code or credential access shown.
Reasonable to install for public Rust crate lookups. Avoid sending sensitive private project names or confidential package research through the hosted gateway unless you trust the Pipeworx service.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.