Back to skill

Security audit

Database Operations

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only database guidance skill with broad routing terms but no hidden execution, credential access, or unrelated behavior.

Safe to install as a database helper, but review generated SQL before running it, especially migrations, dynamic SQL functions, audit logs that may copy sensitive fields, cache invalidation code, and scheduled materialized-view refreshes.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The trigger list contains broad terms such as "database", "schema", "migration", and "SQL", which are common in many ordinary developer conversations. This can cause unintended invocation of the skill outside narrow database-operation contexts, increasing the chance that its guidance is applied when not appropriate.

Vague Triggers

Medium
Confidence
86% confidence
Finding
The description says the skill should be used for a wide range of database-related questions, creating an open-ended activation condition. Overly broad routing criteria can cause the skill to activate in cases where database changes, migrations, or performance advice are unsafe, irrelevant, or insufficiently scoped.

Shadow Command Trigger

Medium
Category
Trigger Abuse
Confidence
82% confidence
Finding
Including "EXPLAIN" as a trigger can conflict with generic built-in assistant behaviors around explaining concepts. This shadow trigger may cause the database skill to intercept unrelated requests containing the common word "explain," leading to incorrect routing and potentially unsafe or confusing operational guidance.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.