AANA Email Send Guardrail Skill

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only email safety checklist that helps prevent unsafe sends and does not include hidden code, persistence, or automatic data access.

Reasonable to install if you want stricter review before email sends. Use only trusted or administrator-approved checkers if one is configured, keep review payloads redacted, and remember this is agent guidance rather than a technical enforcement layer by itself.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Scope Creep

Low

Category: Excessive Agency
Content: - whether it is needed, - whether sharing is authorized. Do not send attachments when the file is ambiguous, stale, private beyond scope, or not explicitly approved. ## Claim And Promise Rules
Confidence: 70% confidence
Finding: beyond scope

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal