Dev Toolkit

Security checks across malware telemetry and agentic risk

Overview

The skill appears to be a straightforward fact-checking and metric-benchmarking helper with disclosed external lookups and no hidden execution behavior.

Install if you are comfortable sending the specific claims and metric values you ask it to check to external services. Avoid using it with confidential, personal, regulated, or highly sensitive business data unless that sharing is acceptable.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

VirusTotal findings are pending for this skill version.