Tmp.J1Z8MraaKa
Security checks across malware telemetry and agentic risk
Overview
The available scanner telemetry is clean, and no concrete artifact evidence was provided or found showing unsafe behavior.
This review is limited because the target skill files were not available for direct artifact inspection. Based on the clean supplied telemetry, there is no reason to hold the skill, but users should still review the skill text and any requested permissions before installing.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.