CSS

Security checks across malware telemetry and agentic risk

Overview

This is a CSS reference skill made of markdown guidance only, with no evidence of code execution, data access, persistence, or hidden behavior.

This appears safe to install as a CSS reference aid. It may be invoked broadly for frontend styling questions, so review any generated CSS for browser support, accessibility, and your project's design constraints.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Low

Confidence: 92% confidence
Finding: In a markdown file, 'When to Use' serves as the invocation guidance. Phrases like 'User needs CSS expertise' and 'from layout challenges to production optimization' are very broad and do not define clear trigger scope, exclusions, or negative examples, which could cause the skill to be invoked for a wide range of general frontend requests.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal