Related Skill

Security checks across malware telemetry and agentic risk

Overview

This skill is not deceptive, but it gives an agent broad power to install, update, or remove other skills, so it needs review before use.

Install only if you want an agent helper that can manage other skills. Approve only specific `npx skills` commands you requested, review each target skill and publisher first, and avoid broad updates or removals unless you intend to change the local skill environment.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: The manifest description includes many broad trigger phrases such as 'find skills', 'more capabilities', and 'similar skills' that can match ordinary user requests unrelated to package installation. This increases the chance the skill is auto-invoked in contexts where the user did not explicitly ask to search or install software, which is risky because the skill is connected to a package-management style tool.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The documentation prominently includes `npx skills add`, `update`, and `remove` commands but does not warn that these commands change the local environment by installing or modifying software. In the context of a discovery skill that encourages expanding capabilities, this makes unintended system changes more likely, especially if the agent or user treats the examples as safe defaults.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal