Python Cheat Sheets

Security checks across malware telemetry and agentic risk

Overview

This is a Markdown-only Python reference skill that transparently fetches examples from pythonsheets.com and shows no hidden execution, credential access, persistence, or destructive behavior.

Install if you are comfortable with the agent consulting pythonsheets.com for Python examples. Review generated code before running it, especially for networking, database, security, infrastructure, or production-impacting tasks.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The description says to use the skill for 'Python questions' and 'any Python development tasks,' which is extremely broad and does not define limits, exclusions, or negative examples. For a markdown skill file, this creates an ambiguous trigger scope that may cause the skill to activate for nearly any Python-adjacent request.

Vague Triggers

Medium

Confidence: 87% confidence
Finding: The phrase covers a very large set of common requests and does not distinguish this skill from general coding assistance. There are no constraints on context, supported task types, or examples of requests that should not trigger the skill.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal