ReleaseOps

Security checks across malware telemetry and agentic risk

Overview

ReleaseOps is a read-only GitHub Actions triage plugin whose log access is disclosed and aligned with its purpose, though users should treat CI log excerpts as potentially sensitive.

Install only for repositories where the agent is allowed to read GitHub Actions metadata and logs. Use a least-privilege GitHub token with Actions/Contents/Metadata read access, avoid broad personal tokens, and set includeLogExcerpt false when logs may contain customer data or secrets.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: This code fetches raw GitHub Actions job logs and returns extracted lines to the caller without any masking, redaction, or warning that CI logs may contain secrets, tokens, internal URLs, stack traces, or other sensitive operational data. Even though GitHub masks some known secrets, logs frequently still contain sensitive material from misconfigured workflows or application output, so exposing excerpts through this skill expands the disclosure surface.

VirusTotal

62/62 vendors flagged this plugin as clean.

View on VirusTotal