Ops Deck Lite

Security checks across malware telemetry and agentic risk

Overview

This looks like a local productivity skill rather than malware, but it asks users to run persistent services that can repeatedly index private source code without enough scope or cleanup guidance.

Review before installing. Use it only on trusted local repositories, define narrow index roots, exclude secrets, credentials, dependency folders, generated files, and private data, protect the SQLite database with filesystem permissions, and document how to stop PM2 services, remove the cron job, and delete old indexes.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The documentation explicitly promotes indexing the entire codebase and storing chunks, embeddings, and natural-language summaries locally, but it does not warn that this may capture proprietary code, secrets, credentials, or regulated data. In a skill intended for agents and broad code search, this omission matters because users may enable indexing on sensitive repositories without understanding the data retention and exposure implications.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal