Cluster Upgrade Planner

Security checks across malware telemetry and agentic risk

Overview

This skill is a visible Kubernetes upgrade-planning guide with powerful but purpose-aligned commands that users should review before running.

Install only if you want an operator-facing Kubernetes upgrade checklist. Before using generated commands, confirm the kubeconfig points to the right cluster, schedule a maintenance window, rehearse in staging where possible, protect any etcd or manifest backups with restrictive access controls, and have a qualified cluster administrator approve the final runbook.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 82% confidence
Finding: The skill provides copy-pasteable upgrade and node-drain commands that can disrupt running workloads, but the description lacks an explicit safety warning about production impact, maintenance windows, and rollback prerequisites. In an agent setting, presenting these commands without strong confirmation gates increases the chance of accidental service disruption.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal