Package Manager Updates
Security checks across malware telemetry and agentic risk
Overview
This skill only provides instructions for checking and updating local developer packages, with actual updates requiring explicit user confirmation.
Install only if you are comfortable allowing the agent to inspect installed package managers and, after you approve, run package upgrade commands. Review the summary before approving broad updates, especially Homebrew or global package upgrades, and prefer specific-package updates when stability matters.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.