Walmart Seller Guide
Security checks across malware telemetry and agentic risk
Overview
This is a markdown-only Walmart Marketplace selling guide with no code, hidden behavior, credential access, or persistence.
This appears safe as a guidance skill. Before running the documented npx install command, verify the package and publisher are the expected ones. Do not provide Walmart account credentials or authorize listing, pricing, fulfillment, or advertising changes unless you intentionally want the agent to act with limited permissions.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.