Resilient Coding Agent
Security checks across malware telemetry and agentic risk
Overview
This instruction-only skill does what it claims: it helps run long coding-agent tasks in tmux, with disclosed notes about persistence and sensitive logs.
Install only if you are comfortable with long-running coding agents continuing inside tmux after the orchestrator disconnects. Use it on trusted projects, clean up temp directories, restrict permissions on logs, and avoid tasks that may echo API keys or other secrets into tmux scrollback.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.