Xhs Html Cover
Security checks across malware telemetry and agentic risk
Overview
This is a local HTML-to-PNG image generation skill with disclosed Playwright use and no evidence of credential access, data exfiltration, persistence, or destructive behavior.
Install only if you are comfortable with the skill using a local browser renderer and writing PNG files locally. Treat image fields as plain text, avoid pasting untrusted HTML or JavaScript into placeholders, and review any template changes before using them.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.