Opsera
Security checks across malware telemetry and agentic risk
Overview
The skill asks agents to run remote commands and transfer files through VPN/Xshell session profiles, but the claimed bundled executable is not present in the package.
Review before installing. The documented behavior is powerful but purpose-aligned for SSH/VPN work; the main issue is that the package says it includes an executable, yet only the markdown instructions are present. Do not rely on this skill until the publisher supplies the expected binary in the package and its provenance can be checked.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
62/62 vendors flagged this skill as clean.