Back to skill

Security audit

Paid Waitlist Page

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed SettleMesh workflow for deploying paid waitlist pages, with no bundled executable code and no hidden behavior found.

Before installing, confirm you trust SettleMesh and understand that using this skill can deploy hosted infrastructure, store signup data in a managed database, cache a CLI session, and spend credits for deploy or payment features. Keep explicit approval for any paid action and review deploy JSON output rather than assuming generated URLs or project IDs.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.