Golang Error Handling

Security checks across malware telemetry and agentic risk

Overview

This is a Go error-handling guidance skill; its broad coding permissions are disclosed and fit its purpose.

Install this for Go projects where you want an agent to write, review, or audit error handling. It can edit repository files, run Go/git-related commands, and launch audit sub-agents, so use it only where that level of repository access is acceptable.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Autonomous Decision Making

Medium

Category: Excessive Agency
Content: // ✗ Bad — only checking in some branches result, err := doSomething() fmt.Println(result) // using result without checking err // ✓ Good — always check before using other return values data, err := os.ReadFile("config.yaml")
Confidence: 75% confidence
Finding: without checking

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal