Skylv Doc Generator

Security checks across malware telemetry and agentic risk

Overview

This README generator is purpose-aligned and simple, but users should preview changes before letting it write or replace a README file.

Install this if you want help creating or refreshing project README files. Before applying its output, ask the agent to show a preview or diff, confirm the target path, and avoid overwriting an existing README unless you have reviewed the replacement.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill is designed to write a README.md but does not require user confirmation before modifying files. In environments where the agent can write to the workspace automatically, this can cause unintended file creation or modification, especially if a README already exists or the user expected a draft-only response.

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The instruction to write a complete README.md does not warn about overwriting an existing README file. This creates a realistic risk of destructive file modification, leading to loss of curated documentation or insertion of inaccurate auto-generated content into an important project file.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal