Security audit
Pilot Verify
Security checks across malware telemetry and agentic risk
Overview
This instruction-only skill uses Pilot Protocol CLI checks to verify agent identity, reputation, and reachability without hidden scripts or destructive behavior.
Before installing, confirm pilotctl comes from the legitimate Pilot Protocol project and that you are comfortable querying a running Pilot daemon. Install jq and timeout from trusted system packages because the examples rely on them even though only pilotctl is declared in metadata.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
