Security audit
Security Review
Security checks across malware telemetry and agentic risk
Overview
This is a straightforward security code review prompt with no executable code, persistence, credential handling, or hidden behavior evident in the artifacts.
Before installing, note that the skill is intended to read and analyze code you ask the agent to review. It does not itself add executable code or persistence, but you should still avoid sharing repositories or diffs containing secrets unless that is intended for the review.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
