Web Hosting
Security checks across malware telemetry and agentic risk
Overview
This skill is a disclosed deployment helper that can publish code and configure hosting accounts, but its high-impact actions fit its stated purpose and include clear gating and verification requirements.
Before using it, review the dependent skills, install only the deploy path you need, avoid `update --all` unless intended, use least-privilege tokens, verify the logged-in GitHub/Vercel/Netlify accounts, check the project for secrets before pushing, and confirm repository visibility and production/domain changes before proceeding.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.