GPU shader toolkit

Security checks across malware telemetry and agentic risk

Overview

This appears to be a dual-use shader analysis skill, but the supplied evidence does not show hidden execution, exfiltration, persistence, or destructive behavior.

Install only if you intend to analyze shaders or related artifacts you own, created, or are explicitly allowed to inspect. Avoid using it on third-party game archives, emulator dumps, driver caches, or other local data where copyright, license, privacy, or anti-circumvention rules may apply.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The skill contains extensive instructions for extracting and reverse-engineering compiled shaders from NVIDIA caches, game archives, and emulator dumps, but it does not bound that guidance to authorized, owned, or permitted targets. In a skill context, that omission materially increases misuse risk because an agent could help users inspect third-party binaries, proprietary assets, or local caches that may contain sensitive or copyrighted material.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal