gui.new
Security checks across malware telemetry and agentic risk
Overview
The skill is a disclosed integration that uploads generated HTML or Mermaid diagrams to gui.new to create public share links, with privacy considerations users should understand.
Install only if you are comfortable sending the generated HTML or diagram content to gui.new and treating resulting links as public until they expire. Do not include secrets, personal data, confidential business content, or sensitive form inputs, and protect any optional Pro API key.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.