submit pr
Security checks across malware telemetry and agentic risk
Overview
This skill automates a normal PR submission workflow with disclosed Git and GitHub CLI actions and user confirmation points.
Install this only if you want the agent to help submit PRs from your local repository. Before approving each run, review the changed-file list and commit message carefully because the skill can stage files, create a commit, push your current branch, and open a GitHub PR using your existing GitHub CLI session.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.