Etsy
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed Etsy guidance skill that saves optional local shop notes only with user consent and does not include executable code or account-changing automation.
Before installing, decide whether you want the skill to activate only on explicit Etsy requests or more proactively on related shop-growth discussions. Allow ~/etsy/ persistence only if you are comfortable saving local shop context and experiment notes; otherwise use stateless mode.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.