Security Audit by Jason
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed local security-audit helper that scans chosen folders for risky files and patterns, with no evidence of hidden execution, network transfer, credential access, or persistence.
Use this as a basic local pre-screen, not proof that downloaded code is safe. Run it from the exact repo, skill, or folder you want checked, avoid broad private directories, review any saved report before sharing it, and manually inspect unfamiliar code even when the audit passes.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.