Knowledge Graph Generator

Security checks across malware telemetry and agentic risk

Overview

This markdown-only skill coherently converts user-provided web or local file URLs into RDF/JSON-LD, but users should be careful with local files and saved outputs.

Install only if you are comfortable having the agent read the exact web or local file URLs you provide and optionally save generated RDF/JSON-LD files. Avoid pointing it at confidential local documents unless that is intentional, and specify or confirm the output path before saving.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The markdown explicitly directs the skill to extract `file:` URLs, read local content, and save results to `/Users/kidehen/Documents/LLMs/Claude Generated/web pages/`. For markdown files, SQP-2 applies when the skill description omits warnings about behaviors that could affect user data or system integrity, and there is no visible caution about local file access or writing files to disk.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal