Med Info
Security checks across malware telemetry and agentic risk
Overview
This is a coherent medication lookup skill that uses public medical APIs and a local public-data cache, with no evidence of hidden collection, destructive behavior, or privilege abuse.
Install this if you are comfortable with a medication-reference CLI that sends drug names or identifiers to public medical APIs and stores public reference datasets in a local cache. Do not enter patient-specific information or PHI, and only provide OPENFDA_API_KEY if you need higher openFDA rate limits.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.