Thinking Partner
Security checks across malware telemetry and agentic risk
Overview
This is a simple instruction-only brainstorming skill with no code, installer, credentials, or hidden behavior found.
Safe for normal brainstorming use. Before installing in an agent connected to private notes or memory, confirm whether 'existing notes or context' and the running insight log are limited to the active chat or can access and store broader personal material.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.