Code Review Assistant
Security checks across malware telemetry and agentic risk
Overview
This code-review skill is a simple checklist and output template, with no executable code, install steps, credential requests, or hidden behavior found.
Before installing, remember that code review requires sharing code or diffs with the agent. Avoid including secrets, private keys, production credentials, or unrelated sensitive files in the review context.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.