Security audit
DB Migration Validator / 数据库迁移验证器
Security checks across malware telemetry and agentic risk
Overview
This skill is a simple markdown-only database migration validator prompt with no executable payload or harmful behavior found.
Installation appears low risk from a security standpoint, but users should expect a very lightweight skill: it does not include actual migration analysis code or detailed validation logic, and the declared curl requirement is not explained by the artifact.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
