Upgrade Cairo Contracts
Security checks across malware telemetry and agentic risk
Overview
No evidence was provided that this skill does anything unsafe, but the actual target skill files were not available here for a full artifact review.
Review the actual skill files before installing because they were not available in this workspace; proceed only if the skill's requested tools, credentials, network access, and persistence match the use case you expect.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
58/58 vendors flagged this skill as clean.