Changelog Generator Cn
Security checks across malware telemetry and agentic risk
Overview
This is a low-risk changelog-writing skill that only needs normal access to a local git repository and does not request credentials, installs, persistence, or external services.
Install is reasonable if you want an agent to generate changelogs. Run it from the correct repository and branch, review the generated CHANGELOG.md before publishing, and remember that commit messages or style files may contain private information.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.