Ssh Remote Control

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed SSH remote-control guide whose powerful access is expected for its stated purpose, but users should install it only when they intentionally want an AI agent to control a machine over SSH.

Install only for machines you own or are explicitly authorized to administer. Use a dedicated restricted account and dedicated SSH key, avoid root/admin access, keep tunneling off except when needed, monitor SSH logs, and revoke or rotate the key when the agent no longer needs access.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 81% confidence
Finding: The examples demonstrate remote file creation, application control, process inspection, browser tab URL retrieval, and screenshot capture on a remote machine without a prominent consent/privacy warning adjacent to those actions. In a skill designed for SSH remote control, these capabilities are expected, but presenting them without explicit user-authorization and privacy-impact guidance increases the risk of misuse, covert surveillance, or unauthorized data access.

VirusTotal

VirusTotal engine telemetry is currently stale for this artifact.

View on VirusTotal