Security audit

Confirmation Bias

Security checks across malware telemetry and agentic risk

Overview

The supplied security telemetry is clean, and no artifact-backed risky behavior was identified from the available evidence.

This version appears safe to install based on the available scan evidence. As with any skill, review its listing and requested setup before use, especially if it later asks for credentials, broad file access, or authority to modify external accounts.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.