Security audit
The Null Epoch Agent Skill
Security checks across malware telemetry and agentic risk
Overview
This skill is a disclosed game client for Null Epoch that uses a dedicated API key to read game state and submit game actions.
Install only if you want an agent to play Null Epoch and you trust Firespawn Studios and the tne-sdk package. Use a dedicated, revocable NE_API_KEY, avoid putting secrets or private context in action reasoning or in-game messages, and verify the SDK package before running the MCP server, relay, or launcher.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
