Qto Report
Security checks across malware telemetry and agentic risk
Overview
This skill appears to be a local construction reporting helper that reads user-provided BIM/CAD files and writes quantity or cost reports.
Install this if you need QTO reporting from BIM/CAD data. Provide only the project files you intend to process, choose explicit output locations, verify generated quantities and cost estimates before business use, and treat the minor version mismatch as something to check if exact provenance matters.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.