Workspace Context Linter

Security checks across malware telemetry and agentic risk

Overview

This is a local diagnostic linter that reads workspace context files and can optionally write a report, with no evidence of hidden network access or destructive behavior.

Install this if you are comfortable with a local Python script reading your workspace context and memory files. Treat generated reports as potentially sensitive, especially before sharing them outside the workspace.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 88% confidence
Finding: The skill instructs the agent to read multiple workspace files and optionally generate a report via a script with an output path, which implies file read and file write capabilities, but no permissions are explicitly declared. This creates a trust and enforcement gap: operators may assume the skill is read-only from metadata while it can access and write files, increasing the risk of unintended data exposure or unauthorized modification if invoked in sensitive workspaces.

VirusTotal

52/52 vendors flagged this skill as clean.

View on VirusTotal