Cloud CIS Benchmarks Audit

Security checks across malware telemetry and agentic risk

Overview

This is a legitimate cloud security audit skill, but it includes copy-paste remediation commands that can change production cloud accounts, so users should review it carefully before use.

Use this as an audit and remediation reference, not as an autopilot. Run the Python audit helper only with scoped read-only AWS credentials, and do not paste the remediation commands into production until you have replaced placeholders, limited the target resources, tested in a non-production account, obtained change approval, and prepared rollback steps.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The markdown includes remediation commands that can modify live cloud resources, including deleting IAM access keys, enabling encryption across all S3 buckets, creating trails, and assigning policies, without an explicit safety warning or change-control guidance. In a security-audit skill, readers may copy-paste commands into production, causing service disruption, loss of access, or unreviewed configuration changes.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal