prisma-migrate

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Prisma Access migration helper, but it can change security configuration in a target tenant and should be used carefully.

Install only if you intend to let an agent assist with Prisma Access tenant migration. Use least-privilege service accounts, verify the source and destination tenant IDs, review every planned import or overwrite decision, test in a non-production tenant when possible, and do not commit or push running configuration until you have confirmed the candidate state.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The document provides concrete import and candidate-push procedures that modify a live Prisma Access tenant, but it does not prominently warn users that these operations can change security policy state in the destination environment. In an agent skill context, omission of explicit destructive-change warnings increases the risk of unintended configuration changes, outages, or policy drift if the workflow is followed automatically or by an inattentive operator.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal