Back to skill

Security audit

Ops Coding Standards

Security checks across malware telemetry and agentic risk

Overview

This is a coding-standards reference skill that may activate broadly, but it does not run code, request access, or hide sensitive behavior.

Safe to install as an advisory coding-standards reference. Be aware it may activate more often than expected in Python/Django or ops-related discussions, and treat its standards as guidance to review against your own project conventions.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
89% confidence
Finding
The skill description says it should auto-activate for broad categories like ops code writing, code review, and Python/Django standards requests. Overly broad activation can cause the skill to trigger in unrelated or only loosely related conversations, increasing the chance that its instructions influence agent behavior unexpectedly.

Vague Triggers

Medium
Confidence
95% confidence
Finding
The regex triggers use permissive patterns like '(.*) ... (.*)', which can match ordinary discussion containing common terms such as 'python', 'django', or 'ops'. In an agent system, this increases unintended activation risk and can create prompt-scope collisions where the skill injects guidance into contexts that did not explicitly request it.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.