Security audit

vibe-coding-skills-installer

Security checks across malware telemetry and agentic risk

Overview

This is a transparent installer for other coding-agent skill sets, but it can make persistent global or project changes and run upstream setup code.

Install only if you trust this skill and the upstream OpenSpec, gstack, and Superpowers repositories. Review the chosen scope and destination paths before approving commands, and check git status after project installs before committing added files.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The script performs state-changing operations such as `npm install -g`, `git clone`, `git pull`, copying files into agent skill directories, and executing external `./setup` scripts immediately when invoked with `--install`, without any built-in confirmation, dry-run, or trust prompt. In a skill-installer context this is especially sensitive because it fetches and executes code from remote repositories and modifies global user directories, so accidental invocation, argument confusion, or social-engineering through the agent could lead to unwanted code execution and persistent environment changes.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.