Security Skill Scanner
Security checks across malware telemetry and agentic risk
Overview
This skill is a disclosed security scanner, but it should be installed only if you are comfortable with optional hooks that can intercept skill installs and scheduled scans.
Before enabling the optional shell hook or cron jobs, review the referenced scripts and paths, keep a backup of your shell profile, and use the hook only if you want this skill to mediate future skill installs. Treat its scan results as advisory and manually review anything it blocks or whitelists.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.