Back to skill

Security audit

HTML Coder

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only HTML helper skill with normal web-development examples and no evidence of hidden access, persistence, or malicious behavior.

Safe to install as an HTML reference skill. Before publishing generated pages, review any copied CDN, hosted-font, analytics, or JavaScript snippets against your privacy and security requirements; prefer self-hosted or integrity-pinned assets for sensitive production sites.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Low
Confidence
90% confidence
Finding
The examples recommend third-party resources such as jsDelivr and Google-hosted assets without warning that loading them causes client browsers to contact external services, which has privacy, availability, and supply-chain implications. In a reference skill, this can lead downstream users to copy-paste production patterns without understanding the network exposure.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The Tailwind example loads executable JavaScript directly from a third-party CDN, which is more sensitive than a stylesheet because it runs code in the page context. Without any warning, users may adopt this pattern in production and expose themselves to supply-chain compromise, CSP incompatibilities, or unexpected external execution.

Missing User Warnings

Low
Confidence
93% confidence
Finding
The Google Fonts examples omit that browser requests to Google services disclose user metadata such as IP address and user agent to a third party. This is primarily a privacy/compliance concern rather than a code-execution issue, but documentation should not present it without caveats.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.