1Forge
Security checks across malware telemetry and agentic risk
Overview
No evidence of malicious behavior was found, but the actual target skill artifacts were not available for a full coherence review.
This looks safe based on the available scan inputs, but install only if the marketplace entry and files shown to you match the skill you expect, since the underlying artifact content was not available for detailed review in this adjudication.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.