Vercel
Security checks across malware telemetry and agentic risk
Overview
This skill is a disclosed Vercel management guide that routes access through ClawLink and requires confirmation for impactful changes.
Install this only if you intend to connect Vercel through ClawLink. Verify the ClawLink plugin and website, avoid pasting raw credentials into chat, use least-privilege Vercel access where possible, and review previews carefully before approving deployments, domain changes, project changes, or environment-variable updates.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.