Back to skill

Security audit

Security Review

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward security code review prompt with no executable code, persistence, credential handling, or hidden behavior evident in the artifacts.

Before installing, note that the skill is intended to read and analyze code you ask the agent to review. It does not itself add executable code or persistence, but you should still avoid sharing repositories or diffs containing secrets unless that is intended for the review.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.