Security audit
GSD-Claw
Security checks across malware telemetry and agentic risk
Overview
This is an instruction-only project workflow skill with no executable code, credentials, install scripts, or hidden persistence.
Before installing, understand that this skill may guide an agent to inspect and modify project files when you ask for substantial coding work. Review plans before large edits and be careful in repositories containing secrets, but the artifacts do not show hidden behavior or unusual privileges.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.