Llm Safe Write

Security checks across malware telemetry and agentic risk

Overview

This is a self-contained file-writing workflow skill with no evidence of hidden credential use, network behavior, persistence beyond installation, or destructive actions.

Install this only if you want your agent to use a more cautious incremental editing workflow for large or CJK-containing files. Review generated edits as usual, especially append operations that may temporarily insert marker lines if interrupted.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Intent-Code Divergence

Medium

Confidence: 93% confidence
Finding: The skill contains conflicting operational guidance: earlier sections require proactively avoiding Write for files over 50 lines, CJK content, or after a Write failure, but the Strategy section says to 'try the simpler approach first.' In an agent setting, contradictory instructions can cause unsafe routing, leading the model to retry or attempt Write in cases the skill otherwise classifies as high-risk, increasing the chance of truncated or corrupted file writes.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal