Back to skill

Security audit

Regex Patterns

Security checks across malware telemetry and agentic risk

Overview

This is an informational regex cookbook with expected examples for searching and editing files, but users should review in-place edit commands before running them.

Installers should treat this as a reference skill. Before applying its command-line examples, especially commands using sed -i or xargs, run them only on intended files and prefer version-controlled or backed-up copies so broad replacements can be reviewed or undone.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
87% confidence
Finding
This section includes multiple `sed -i` and similar in-place modification commands that directly alter files, but it does not clearly warn users that these examples are destructive and may overwrite source code or configuration irreversibly. In a skill intended for practical reuse, users may copy-paste these commands onto important files, causing accidental data loss or broad unintended edits.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.