Onshape Featurescript
Security checks across malware telemetry and agentic risk
Overview
This is a text-only CAD helper for generating Onshape FeatureScript, with no evidence that it runs code, uses credentials, or accesses user data.
Before installing, understand that this skill can help draft FeatureScript that you may paste into Onshape, so you should still review generated CAD code for correctness and safety. From a security standpoint, the published artifacts do not show data access, credential use, installation scripts, or automatic actions.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.