Security audit
Sente
Security checks across malware telemetry and agentic risk
Overview
The skill clearly describes a Sente integration for agent email, account creation, and account access, with sensitive behavior disclosed and bounded by user control guidance.
Install only if you want this agent to use a real Sente email identity and manage web accounts. Review the target sites' terms, avoid connecting accounts you do not own or control, keep the API token and exported session files private, and prefer confirm-before-submit when account creation has legal, billing, or reputation impact.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
58/58 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
