Control Assessment
Security checks across malware telemetry and agentic risk
Overview
This is a document-reviewing compliance skill that may read and quote provided files or URLs, with no code execution, persistence, credential handling, or hidden behavior found.
Install only if you are comfortable letting the agent read the specific organizational documents or URLs you point it at. Avoid using broad private directories as inputs, and review quoted evidence before sharing assessment outputs externally.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.