Typescript Strict
Security checks across malware telemetry and agentic risk
Overview
This is a documentation-only TypeScript strict-mode guidance skill with no executable code, credential use, hidden behavior, or persistence.
Reasonable to install as a TypeScript workflow aid. Review any proposed tsconfig, CI, or large refactor changes before applying them to important projects, because stricter compiler settings can affect build behavior even when the skill itself is benign.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.