Vitest Config Validator
Security checks across malware telemetry and agentic risk
Overview
This skill is a local Vitest configuration checker that reads user-chosen config files and prints validation results without hidden network, credential, persistence, or mutation behavior.
Install if you are comfortable running a local Python validator in your workspace. Use it on intended Vitest or Vite config files; it appears to report findings only and does not install dependencies, contact the network, request credentials, or modify files.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.