Gitlab
Security checks across static analysis, malware telemetry, and agentic risk
Overview
No artifact-backed malicious or suspicious behavior was available in the review context; the negative VirusTotal signal alone is not enough to flag the skill.
Treat glab CLI access as powerful because it can read and mutate GitLab resources under the logged-in account. In this run, no artifact-backed evidence justified blocking the skill, but workspace file inspection was not available, so review the actual SKILL.md and metadata before installing in a sensitive environment.
SkillSpector
By NVIDIA
SkillSpector findings are pending for this release.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
64/64 vendors flagged this skill as clean.