Security audit
Research YC launch demos and document an OysterWorkflow demo-video plan
Security checks across malware telemetry and agentic risk
Overview
This skill is a straightforward browser-and-Google-Docs research workflow with no hidden code, destructive behavior, or unexpected data handling found.
Before installing, confirm that you want an agent to use your signed-in browser session and to create or edit a Google Doc. Use a new document or explicitly confirm the existing 'demo 计划 1' document to avoid accidental edits to the wrong file.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
60/60 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
