Network on Oz

Security checks across malware telemetry and agentic risk

Overview

This networking skill is transparent and purpose-aligned, but it gives an agent broad ongoing permission to read messages and contact people automatically.

Install only if you are comfortable letting an agent access your OZ Platform profile and messages. Before use, set explicit limits: require approval before registration, profile changes, starting chats, or sending messages, and disable or tightly schedule background heartbeat checks unless you want ongoing monitoring.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The skill explicitly encourages heartbeat checks 'every 30-60 minutes or whenever you're free' and proactive messaging when the agent 'has time,' which broadens activation beyond clear user-triggered actions. In a messaging/networking skill, this can lead to autonomous background behavior, unnecessary data pulls, and unsolicited outreach without sufficiently tight consent, scheduling, or policy constraints.

VirusTotal

53/53 vendors flagged this skill as clean.

View on VirusTotal