Security Testing Strategy
Security checks across malware telemetry and agentic risk
Overview
This is an instruction-only skill for creating security testing plans, and its repository-reading and document-writing guidance fits that purpose.
Installers should expect this skill to read repository files and help write a security testing strategy. Review any generated CI changes, shell commands, fuzzing setup, ClusterFuzz/OSS-Fuzz integration, and test-data recommendations before applying them, especially where external services or production-adjacent configuration are involved.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.