Security audit
Perf Tools
Security checks across malware telemetry and agentic risk
Overview
The artifacts are coherent repo-local agent skills with disclosed operational commands and safeguards, though some workflows can run powerful local or staff actions when deliberately invoked.
Install only if you trust the publisher and intend to use these repo-maintainer workflows. Review the autoreview helper before using its default full-access nested review mode, and use ClawHub moderation commands only with the required authorization, explicit targets, reasons, and confirmation.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
