Exa
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed Exa web-search API helper that uses Maton authentication and contains only documentation, not hidden executable code.
Install only if you trust Maton as the gateway and credential manager. Treat MATON_API_KEY and any linked Exa key as sensitive, avoid sending private URLs or confidential research prompts unless appropriate, and confirm any connection create or delete action before running it.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.