Tech Debt Tracker
Security checks across malware telemetry and agentic risk
Overview
This skill is a read-only tech-debt reporting guide that inspects code and git history, with no executable installer, persistence, credentials, or data transfer behavior found.
Use this on repositories you are comfortable having analyzed by your agent. Review any generated tech-debt report before sharing it, because it may include file names, code comments, git-history details, and sensitive project structure.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.