Vendor Performance Audit
Security checks across malware telemetry and agentic risk
Overview
This is a checklist-style vendor review skill with no executable code or hidden behavior, though it may involve sensitive business records during use.
Reasonable to install for vendor review workflows. Provide only records relevant to the vendor being reviewed, verify scores against evidence, and have an authorized person approve vendor communications, renewal decisions, or offboarding actions before acting.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.