Webperf Interaction
Security checks across malware telemetry and agentic risk
Overview
This is a coherent Chrome DevTools web-performance skill that temporarily instruments the active page and does not show credential access, exfiltration, or destructive behavior.
Install this only for pages you intentionally want to performance-test. Because it runs JavaScript in the active tab and may record interaction timing, element targets, script URLs, and layout-shift details, avoid sensitive account or admin pages unless that is the page you mean to inspect. Reload the page after an audit to clear temporary observers and helper functions.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.