Src
Security checks across malware telemetry and agentic risk
Overview
The skill is transparent about SSH bridging to Mac tools, but its persistent wrappers and weak setup-value escaping make the remote access worth careful review.
Install only for gateway and Mac accounts you trust. Use a dedicated non-root SSH key, pin known hosts where practical, avoid broad brew or gh wrappers unless needed, remove wrappers when no longer used, and do not pass hostnames or paths from untrusted sources until the wrapper-generation quoting is fixed.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.