Phy Git Blame Archaeologist

Security checks across malware telemetry and agentic risk

Overview

This skill is a local git-history helper whose repository inspection is disclosed and aligned with its purpose.

Install this only for repositories where you are comfortable letting the agent read local git history, including diffs, commit bodies, author emails, branch history, and issue or ticket references. Prefer explicit slash-command use with a specific file, line, or range when working in private or sensitive codebases.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 87% confidence
Finding: The trigger phrases are broad natural-language requests like "why does this code exist" and "what's the history of this," which can cause the skill to activate in ordinary conversation rather than only on explicit invocation. That creates a real security and safety issue because it may unexpectedly run repository-inspection commands on sensitive local codebases when the user did not intend to invoke this tool.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal