Back to skill

Security audit

Git History Rewriter / Git历史重写器

Security checks across malware telemetry and agentic risk

Overview

The skill is a disclosed Git-history rewriting helper with no executable payload, install commands, persistence, or hidden data flow, though users should treat its intended Git operations as potentially disruptive.

Install only if you understand Git history rewriting. Before using it on shared or public repositories, make a backup, coordinate with collaborators, review changes with a dry run where available, and expect commit hashes and remote synchronization to be affected.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly promotes permanent Git history rewriting and removal of files from the entire repository history, but it does not provide a prominent warning about destructive, repository-wide consequences such as force-push requirements, broken clones/forks, invalidated commit hashes, and potential data loss. In an agent setting, this increases the risk that a user or automated workflow invokes dangerous history-rewrite operations without understanding their blast radius.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.