Terraform Iac
Security checks across malware telemetry and agentic risk
Overview
This is a plain-text Terraform guidance skill that gives safety-focused IaC advice and does not install code, request credentials, or run commands automatically.
Safe to install as Terraform guidance. Treat it as advice, not permission for an agent to apply infrastructure changes automatically; keep production applies behind human review, protected CI workflows, least-privilege cloud credentials, and rollback planning.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
62/62 vendors flagged this skill as clean.