CI Pipeline Optimizer
Security checks across malware telemetry and agentic risk
Overview
This is a read-only CI/CD optimization skill that inspects local pipeline files and does not show hidden access, persistence, or destructive behavior.
Install this for repositories where it is acceptable for an agent to inspect CI workflow files, Dockerfiles, and related project metadata. Review any generated pipeline changes before applying them because the skill provides heuristic optimization suggestions.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
62/62 vendors flagged this skill as clean.