System Monitor

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward local system-monitoring skill, with the main caution that detailed network and process output can reveal sensitive local details.

Install this only if you want the agent to run local system diagnostic commands. Avoid pasting raw process or network output into public chats or tickets, because it may reveal local services, connections, usernames, or command arguments.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Context-Inappropriate Capability

Medium

Confidence: 90% confidence
Finding: The skill includes commands like `lsof -i`, `grep LISTEN`, `ss -tunap`, and interface/connection enumeration that reveal active connections, listening services, and potentially process-to-port mappings. That goes beyond passive 'network traffic' monitoring and can expose sensitive environmental details useful for internal reconnaissance, especially if the agent can run these commands without explicit user scoping.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal