Security audit
Test
Security checks across malware telemetry and agentic risk
Overview
This text-only skill is not malware, but it tells an agent to publish a multi-day sequence of promotional Reddit posts without clear per-post approval or account controls.
Install only if you intentionally want help drafting or publishing these Reddit posts. Before anything goes live, choose the Reddit account explicitly, review and edit every post, verify authorship claims are truthful, check each subreddit's rules, approve each post individually, and make sure the sequence cannot continue without your consent.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
