Research Assistant
Security checks across malware telemetry and agentic risk
Overview
This skill is a local research-note organizer whose disclosed file storage and markdown export behavior fit its purpose.
Reasonable to install for organizing local research notes. Avoid storing passwords, API keys, private keys, or sensitive instructions in notes because they persist across sessions and may later be searched or exported; review export paths before running the export command.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.