Security audit
Dataverse Classic Workflow
Security checks across malware telemetry and agentic risk
Overview
This skill gives cautious guidance for managing Dataverse classic workflows and clearly requires user confirmation before file edits or environment-changing commands.
Before installing, understand that this skill is for users who intentionally manage Dataverse Classic Workflows. Review every proposed XAML diff and every pac command, confirm the target environment carefully, and be especially cautious with production activation, deactivation, solution import, Run As, and Scope settings.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
1/65 vendors flagged this skill as malicious, and 64/65 flagged it as clean.
Static analysis
No suspicious patterns detected.
