Homelab Cluster Management

Security checks across malware telemetry and agentic risk

Overview

This is a legitimate homelab guide, but it should be reviewed because it tells an agent how to automatically control remote machines and Docker recovery without clear confirmation or host limits.

Install only if you intentionally want an agent to assist with homelab infrastructure operations. Before using recovery workflows, require manual approval for SSH, RDP, Docker Desktop, and container restart actions; restrict automation to named hosts and containers; use least-privilege vault-managed credentials; and test commands manually before allowing automation.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The skill explicitly instructs automatic remote recovery actions such as restarting Docker over SSH and initiating an RDP session to wake a machine. Even though framed as operations guidance, these are system-changing remote actions that could be executed by an agent without clear user confirmation, scope limits, or safety gates, creating a real risk of unintended disruption or unauthorized access attempts.

VirusTotal

52/52 vendors flagged this skill as clean.

View on VirusTotal