Security audit

Cynefin

Security checks across malware telemetry and agentic risk

Overview

The available evidence points to a low-risk, instruction-only decision-support skill, with no signs of hidden execution, persistence, or data exfiltration.

This appears safe to install as an advisory reasoning skill. Treat it as guidance for judgment in ambiguous situations, and still require explicit confirmation before any real-world, destructive, financial, or account-changing action.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Autonomous Decision Making

Medium

Category: Excessive Agency
Content: - A familiar approach has stopped working and you can't articulate why - Experts disagree on the right answer — a crisis unfolding where the previous playbook doesn't apply - "Best practices from X" imported without checking if the domain matches - A team is over-planning something emergent, or "let's get more data" when data won't come without action **Not when:** domain is unambiguously Clear (execution only); small-stakes one-shot; specialized framework already fits.
Confidence: 75% confidence
Finding: without checking

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.