Security audit
DR. Planning Artifacts
Security checks across malware telemetry and agentic risk
Overview
This is a planning-only skill that gives structured guidance for creating roadmap and Azure DevOps artifacts, with no scripts or hidden execution behavior.
This appears safe to install for planning workflows. It is tailored to a user named Daniel and may cause an agent to update planning documents when the destination is clear, so review that behavior before using it in shared repositories or team planning spaces.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
