CodeByteLens — 代码智能分析镜
Security checks across malware telemetry and agentic risk
Overview
This skill is a small user-invoked Python code-analysis helper with no evidence of hidden persistence, credential access, exfiltration, or destructive behavior.
This appears safe to install for local code inspection. Before running it, review the target path you pass to the script because directory searches may scan all files under that path, and install pyright only if you want the optional type-checking workflow mentioned in the instructions.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.