Security audit
Project Code Standard
Security checks across malware telemetry and agentic risk
Overview
This skill is a straightforward code-quality helper for linting and optional formatting, with no evidence of hidden data access, network use, persistence, or destructive behavior.
Reasonable to install for normal linting workflows. Use it on repositories you intend to inspect, keep changes under version control before approving fixes, and verify any referenced helper scripts or templates because they were not included in the reviewed package.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
