Google SERP Shorts Search API
Security checks across malware telemetry and agentic risk
Overview
The skill artifacts are coherent developer and maintainer workflows with disclosed command usage and no evidence of hidden persistence, exfiltration, or destructive behavior.
Install only in a trusted ClawHub or Convex development context. Review the autoreview helper before use if your repository contains sensitive code, because it may run a full-access nested reviewer by default and can send diffs to configured fallback review CLIs; use its opt-out flags if that is not acceptable.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.