Chaos Test Designer

Security checks across malware telemetry and agentic risk

Overview

This skill is a chaos-engineering planning guide with risky production examples, but the risky actions are disclosed and aligned with its purpose rather than hidden or automatic.

Install this as a planning aid, not an execution shortcut. Before running any generated chaos command, confirm authorization, verify the current cluster and namespace, start in staging or a sandbox, define blast radius and abort criteria, prepare rollback, and use least-privilege Kubernetes credentials.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill explicitly guides users to design and generate destructive chaos experiments against production systems, including pod deletion, traffic blocking, resource exhaustion, and AZ-level failures, but it does not present a prominent safety warning or require safer defaults such as staging-first execution. In this context, the omission is dangerous because the skill provides runnable commands and production examples that could lead users to cause outages or data-loss events without adequate operational safeguards.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal