Lora Finetune

Security checks across malware telemetry and agentic risk

Overview

This skill is a local LoRA fine-tuning helper with disclosed Hugging Face downloads, but its documentation overstates or mismatches some model and evaluation features.

Before installing, expect Hugging Face model downloads and use a least-privilege HF_TOKEN. Review and set --model_id explicitly because the training script defaults to FLUX.1-schnell despite documentation emphasizing Stable Diffusion, and do not rely on the advertised LLM-as-judge evaluation unless you add that functionality yourself.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Tp4

High

Category: MCP Tool Poisoning
Confidence: 89% confidence
Finding: The skill description materially overstates and misrepresents what the implementation appears to do, including model family, dataset-prep support, and evaluation functionality. This is dangerous because users may run the skill under false assumptions about data handling, model behavior, and external service usage, which can lead to unintended downloads, wasted compute, incorrect outputs, or unsafe operational decisions based on invalid evaluation claims.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal