ground-control

Security checks across malware telemetry and agentic risk

Overview

The skill appears to be a legitimate upgrade/verification helper, but it may automatically change runtime configuration and cron persistence with insufficiently clear user control.

Install only if you are comfortable with a skill that can repair runtime config and alter cron jobs. Prefer running it in dry-run/report-only mode first, review every proposed change, and avoid allowing raw configuration values or secrets to be written into reports or memory files.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Intent-Code Divergence

Medium

Confidence: 93% confidence
Finding: The skill simultaneously requires strict secret redaction and logging of before/after values for auto-fixes. Because Phase 1 operates on runtime configuration, this creates a realistic path for sensitive configuration values or security-relevant settings to be echoed into reports or memory files, especially if field classification is imperfect or the model logs more context than intended.

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The skill advertises that installation and configuration will be handled automatically, while elsewhere disclosing that it can patch runtime config and update cron jobs. That creates a real risk of users authorizing installation without understanding that the skill may make system-changing modifications, which can lead to unintended configuration drift, service disruption, or persistence changes after an upgrade.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal