Back to skill

Security audit

AI生成

Security checks across malware telemetry and agentic risk

Overview

This skill matches its stated purpose of managing AI ad-creative generation tasks and shows no hidden file, credential, shell, network, or persistence behavior.

This appears reasonable to install for ad creative generation workflows. Treat prompts and generation parameters as visible task data, avoid entering secrets or confidential campaign details, and add count limits or per-user scoping if using it in a shared or high-volume environment.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.