Improvement Orchestrator

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed local improvement orchestrator that can modify a chosen skill’s files, with conservative guardrails, local state artifacts, and backups.

Install only if you want an agent-assisted workflow that can edit skill files. Run it on a test copy or tightly chosen --target first, keep --state-root in an isolated directory, and review the generated receipts, diffs, and backups before trusting kept changes.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Description-Behavior Mismatch

Medium

Confidence: 93% confidence
Finding: The documented workflow explicitly targets and modifies another skill's workspace, meaning an orchestration skill is empowered to perform cross-skill writes. In this context, that is dangerous because a broad 'improvement orchestrator' can become a capability-escalation path that silently alters other skills, their prompts, or guardrails, especially when combined with auto-execution and auto-keep behavior.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal