modal-gpu
Security checks across malware telemetry and agentic risk
Overview
This documentation-only skill gives normal Modal GPU training guidance, with disclosed use of cloud credentials and remote GPU jobs.
Install this only if you intend to use Modal for cloud GPU work. Treat Modal and HuggingFace tokens as secrets, avoid exposing them in shell history or logs, review any training script before running it remotely, monitor detached jobs for cost, and clean up persistent volumes that may contain private data.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
56/56 vendors flagged this skill as clean.