Security audit
Ai Investing Assistant With Framework
Security checks across malware telemetry and agentic risk
Overview
This is a small local stock-scoring helper that matches its description and shows no hidden access, persistence, or data transfer behavior.
Security risk appears low. Users should understand that the skill does not fetch live market data or make trades; it only scores the metrics they provide, so the output should be treated as an educational checklist rather than financial advice.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
