Back to skill

Security audit

Dataverse Classic Workflow

Security checks across malware telemetry and agentic risk

Overview

This skill gives cautious guidance for managing Dataverse classic workflows and clearly requires user confirmation before file edits or environment-changing commands.

Before installing, understand that this skill is for users who intentionally manage Dataverse Classic Workflows. Review every proposed XAML diff and every pac command, confirm the target environment carefully, and be especially cautious with production activation, deactivation, solution import, Run As, and Scope settings.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

1/65 vendors flagged this skill as malicious, and 64/65 flagged it as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.