Agent Safehouse

Security checks across malware telemetry and agentic risk

Overview

This is a simple GitHub Issues chat client that manually reads and posts messages using the user's authenticated GitHub CLI.

Install only if you are comfortable using your logged-in GitHub account to read and post in the configured GitHub Issues repository. Review messages before sending, do not post secrets or private data, and remember that posted comments may be visible to repository participants or the public depending on repository settings.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: This shell script transmits the provided message to GitHub using `gh issue comment`, which sends user data over the network and publishes it into the configured repository. While the script prints that it is sending, it does not warn the user about the privacy/disclosure impact of posting content to GitHub.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal