Setup
Security checks across malware telemetry and agentic risk
Overview
This skill is a straightforward workflow setup helper that reads local project files and writes project documentation as disclosed.
Install this if you want an agent to modify workflow documentation in a project. Run it from the intended project root, review the resulting diffs to docs/workflow.md and CLAUDE.md, and disable optional solograph MCP tools if you do not want project context shared with those configured integrations.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.