terminal-screenshots

Security checks across malware telemetry and agentic risk

Overview

This documentation-only skill explains how to create terminal screenshots with VHS and shows normal, user-run setup and recording commands, with one cleanup example users should review carefully.

Review every .tape file before running it, especially sections between Hide and Show. Replace cleanup commands with disposable temporary directories or harmless placeholders, and avoid recording terminals that may expose tokens, private paths, production data, or secrets.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The example includes a hidden cleanup step that runs `rm temp-files`, which can delete data without the viewer realizing it because the action is explicitly hidden from the recording. In a documentation skill for terminal automation, concealed destructive commands are risky because users may copy the pattern into real environments or adapt it with broader paths, causing accidental data loss.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal