Speed Run

Security checks across malware telemetry and agentic risk

Overview

This is a lightweight coding timer and gamification skill with no executable code or credential access, though users should avoid its fastest mode on serious projects.

Use this as a fun personal productivity overlay. For production, customer-facing, regulated, or shared repositories, prefer the 100% or Glitchless modes and keep normal safeguards such as tests, code review, CI, deployment approval, and explicit confirmation before any history-changing Git action.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The 'Any%' mode explicitly normalizes skipping tests, review, and documentation, and even frames risky shortcuts like copy-paste and force-push as valid strategies. In a software engineering context, this can encourage users to bypass core quality and change-control safeguards, increasing the chance of introducing defects, regressions, or insecure code into shared systems.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal