product-replace
Security checks across malware telemetry and agentic risk
Overview
This is a straightforward Flyelep image-product replacement API helper with disclosed third-party API use and no hidden install or persistence behavior.
Before installing, confirm you trust Flyelep with the image URLs and prompts you submit. Provide the Flyelep secretKey at runtime, avoid storing it in files, and avoid sending private or sensitive images unless you accept Flyelep's data handling and any API billing implications.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.