Tdd And Programming By Difference
Security checks across malware telemetry and agentic risk
Overview
This is a coding workflow skill for adding tested features, and its requested code editing and test-running authority matches that purpose.
Install this only in code workspaces where you are comfortable letting an agent edit source files, add tests, and run shell commands for the test suite. Review diffs and commands before committing or deploying changes.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.