翻译技能包
Security checks across malware telemetry and agentic risk
Overview
No available scan or accessible workspace evidence shows malicious or review-worthy behavior for this skill version.
This review found no concrete reason to hold the skill, but the target artifact was not available for direct file-level inspection in the workspace. Install only if the published package identity and files match the intended skill version, and review any permissions your agent asks for at runtime.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.