Github Trending
Security checks across malware telemetry and agentic risk
Overview
This skill is a straightforward GitHub Trending lookup tool that fetches public GitHub pages and does not request credentials, persistence, or local data access.
Install only if you are comfortable with the skill contacting GitHub to retrieve public trending data. Treat repository names and descriptions it returns as informational web content, not as instructions for your agent to follow.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.