Skill Namer

Security checks across malware telemetry and agentic risk

Overview

This is a coherent naming helper with simple optional scripts; its main caveats are remembered naming preferences and third-party availability-check links.

Safe to install for brainstorming skill and domain names. Be aware that saved TLD/provider preferences may be reused in future sessions, and availability-check links may reveal candidate names to external registrars or naming services when opened.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: In this markdown file, the skill explicitly tells the agent to persist user defaults such as providers and TLD favorites for future naming sessions. Because this is a behavior that stores user-related preferences across sessions, the description should warn users that this information may be remembered or persisted.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal