Security audit
匹配项目solution
Security checks across malware telemetry and agentic risk
Overview
This skill only classifies user-provided project records using a bundled mapping file, with no evidence of hidden execution or data sharing.
Before installing, confirm that the project descriptions, company types, and partner names you provide are appropriate to process in your agent environment. The skill itself does not show hidden execution, external sharing, credential use, or persistent storage.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.