AppleScript
Security checks across malware telemetry and agentic risk
Overview
This skill is a transparent macOS AppleScript helper with expected local automation power and clear safeguards.
Install this only if you want an agent to automate macOS apps with AppleScript. Review proposed scripts before running them, grant Automation permissions only for apps you intend to control, and check ~/applescript/ if your automation notes may include sensitive app details.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.