Back to skill

Security audit

SQL Cheatsheet

Security checks across malware telemetry and agentic risk

Overview

This is a static SQL reference sheet with no executable code, though some example SQL commands could damage data if copied into a real database carelessly.

Reasonable to install as a SQL quick-reference skill. Before using examples that modify or remove data, preview affected rows, add appropriate WHERE clauses, use transactions or backups where possible, and avoid DELETE, TRUNCATE, DROP, or all-row UPDATE statements unless that is explicitly intended.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The skill includes destructive SQL operations such as UPDATE without WHERE, DELETE FROM table, TRUNCATE TABLE, and DROP TABLE examples without prominent safety guidance that they can cause irreversible data loss if copied into a production environment. In a cheatsheet intended for quick reference, users may paste examples directly, so the lack of explicit warnings and safe-environment guidance increases the chance of accidental misuse.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.