Security audit
Practical Guide To Llm Fine Tuning With Lora
Security checks across malware telemetry and agentic risk
Overview
This is a simple educational LoRA fine-tuning guide with no hidden execution, sensitive access, or persistence behavior.
This skill appears safe to install as reference material. If you turn the example into runnable training code, use trusted Python packages, verify model and dataset sources, and avoid sensitive training data unless you have reviewed the full workflow.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
