Json Format
Security checks across malware telemetry and agentic risk
Overview
The supplied scan inputs do not show malicious behavior, but the specific skill artifact was not available in the workspace for a full artifact-backed review.
No concrete malicious behavior was identified from the available inputs. Because the exact skill artifact was not available for full inspection, users should review the skill files before installing and confirm that any commands, credentials, or external services it asks for match the skill's advertised purpose.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.