Skill Reviewer
Security checks across malware telemetry and agentic risk
Overview
This skill is a disclosed skill-review helper that runs a small local validator and does not show evidence of data theft, persistence, or destructive behavior.
Before installing, review the included Bash/Python scripts if you are cautious about local command execution, and run the skill only in the repository or skill directory you intend to audit. Full review quality depends on having a trusted skill-creator helper available.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.