Safe Email
Security checks across malware telemetry and agentic risk
Overview
This instruction-only skill is coherent with its stated purpose: it reads a dedicated forwarded-email inbox only when explicitly asked and discloses its email access and optional deletion behavior.
Install only if you are comfortable granting access to a mailbox. Use a dedicated inbox and app password, forward only emails you want processed, verify the Himalaya CLI installation yourself, and confirm the exact message before approving deletion or permanent expunge.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.