Codebase Migration Planner
Security checks across malware telemetry and agentic risk
Overview
This is an instruction-only migration planning skill that reads the current repository to estimate migration work and does not show hidden, destructive, credential, network, or background behavior.
Safe to install for normal migration planning. Run its assessment commands only in repositories you intend to analyze, review generated migration plans before acting on them, and avoid putting secrets or sensitive internal details into migration notes.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
60/60 vendors flagged this skill as clean.