Ambit Cli
Security checks across malware telemetry and agentic risk
Overview
This skill transparently documents a high-privilege Ambit workflow for managing Fly.io and Tailscale private networks, with no artifact-backed deception or hidden behavior found.
Install this only if you want an agent to help manage Ambit, Fly.io, and Tailscale infrastructure. Review the external npm package and any GitHub templates before use, prefer pinned template refs or commits, protect and scope the Tailscale API token, avoid putting secrets in command history or logs, and require explicit user approval before using `--yes`, `--self-approve`, `deploy`, or `destroy`.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.