GitHub Monitor
Security checks across malware telemetry and agentic risk
Overview
This is an instruction-only GitHub monitoring skill whose recurring checks, local state file, and notifications are disclosed and aligned with its purpose.
Before installing, confirm the repository list, cron interval, notification destination, and state-file path. Expect the monitor to keep running and sending alerts until the scheduled job is changed or removed.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.