Yida App
Security checks across malware telemetry and agentic risk
Overview
This is a coherent Yida app-building workflow skill, but it can use a stored login session to create and publish real resources.
Install only if you trust the referenced Yida subskills and are comfortable letting the agent use your Yida login session to create and publish resources. Verify the target corpId, appType, page/form IDs, and source file before publishing, and protect or clear `.cache/cookies.json` when finished.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.