Back to skill

Security audit

OATDA Check Balance

Security checks across malware telemetry and agentic risk

Overview

This skill is a narrowly scoped OATDA balance checker that uses a disclosed API key to make a read-only balance request.

Install this only if you use OATDA and are comfortable allowing the agent to read your OATDA API key for balance checks. The artifact instructs the agent not to print the full key and only performs a read-only credits request.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.