MarkItDown
Security checks across malware telemetry and agentic risk
Overview
This skill transparently installs Microsoft MarkItDown to convert user-selected files or URLs into Markdown, with no evidence of hidden or unrelated behavior.
Install this if you are comfortable with a PyPI-based Python tool and its extra dependencies. Only pass files, folders, or URLs you intentionally want converted, because the resulting Markdown may contain private document contents.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.