Gitea

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Gitea integration that uses Membrane for authenticated repository management, including powerful actions that users should confirm carefully.

Install only if you intend to let Membrane access the selected Gitea account. Use least-privileged Gitea permissions where possible, review action names and inputs before execution, and require explicit confirmation before deleting repositories or making other irreversible changes.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

Medium

Confidence: 85% confidence
Finding: The skill explicitly advertises destructive capability ('Delete Repository') without any accompanying warning, confirmation requirement, or guardrails. In an agent setting, this increases the chance of accidental or insufficiently authorized destructive actions, especially if the model interprets a vague user request too aggressively.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal