NOC Engineer

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward career-roadmap API wrapper that asks for career assessment details and identifiers, with no local execution or hidden access behavior found.

Safe to install for the stated use. Share only the career assessment details needed to generate a roadmap, avoid unrelated sensitive employment or personal information, and review the provider's privacy terms if using persistent user IDs or authenticated profile tracking.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Low

Confidence: 91% confidence
Finding: The skill collects user and session identifiers plus career-assessment/profile data, but the documentation provides no privacy notice, data-handling limits, retention policy, or guidance about sensitive personal profiling information. While not an exploit by itself, this omission can lead users or integrators to transmit unnecessary personal data to a third-party API without informed consent or proper safeguards.

VirusTotal

59/59 vendors flagged this skill as clean.

View on VirusTotal