API Mock Generator
Security checks across malware telemetry and agentic risk
Overview
This skill is a disclosed local developer tool for generating API mock data and does not show hidden or unrelated behavior.
Reasonable to install for local API mocking. Review API specs for real secrets or personal data before generating fixtures or serving responses, keep the default localhost binding unless network exposure is intentional, and install PyYAML only from a trusted package source if YAML support is needed.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.