LookupMark Log Analyzer

Security checks across malware telemetry and agentic risk

Overview

This is a read-only local log analyzer whose code matches its stated purpose, with normal caution because logs can still contain sensitive information.

Install only if you want the agent to inspect the listed local logs. Redaction is helpful but not perfect, so review any output before sharing it and avoid vague prompts like "any errors" unless you intend log access.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: Several trigger phrases such as "check logs," "show errors," "any errors," and "search logs" are broad enough to match routine conversation and may invoke the skill unintentionally. Accidental activation can expose sanitized but still sensitive operational context, especially in shared or multi-user environments where log summaries may reveal system behavior, failures, usernames, service names, or timing information.

VirusTotal

VirusTotal engine telemetry is currently stale for this artifact.

View on VirusTotal