GitHub Stars Playbook — Sustained Growth to 10K+ Stars

Security checks across malware telemetry and agentic risk

Overview

This skill is a markdown-only marketing playbook for promoting an open-source repository and does not install code, request credentials, or automate posting.

Before using the playbook, treat it as marketing advice and check each platform's rules. Avoid artificial amplification, brigading, sockpuppets, spammy reposting, or asking directly for stars/upvotes; focus on genuine disclosure, useful technical content, and authentic community engagement.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: This section gives tactical guidance for coordinated cross-platform promotion, including timing, repost behavior, ban-avoidance rules, and velocity targets, without warning users about platform Terms of Service, anti-spam enforcement, reputational harm, or account suspension risk. In a skill explicitly designed to rapidly increase GitHub stars, that omission can normalize manipulative growth tactics and encourage users to engage in behavior that may violate community rules or be treated as spam.

VirusTotal

57/57 vendors flagged this skill as clean.

View on VirusTotal