Fabrik Codek
Security checks across malware telemetry and agentic risk
Overview
This instruction-only skill is transparent about building a local personal knowledge base from user-selected work data, with no artifact evidence of hidden execution or exfiltration.
Install only if you are comfortable creating a persistent local knowledge base from your work history. Review the upstream `fabrik` source, keep the default local transport unless you need SSE, do not bind SSE to public interfaces, and check `~/.claude/projects/` for secrets before transcript indexing.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.