Security audit
Code Coverage Gap Finder / 代码覆盖率缺口查找器
Security checks across malware telemetry and agentic risk
Overview
This skill is a low-risk documentation-style coverage analysis helper, but it does not include an actual tool implementation.
This appears safe to install as guidance, but it may be incomplete: the referenced coverage-gap-finder command is not included in the artifact. Before running any similarly named external script or downloading anything with curl, verify its source and review what files it will read or write.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
