x-cmd network skill

Security checks across malware telemetry and agentic risk

Overview

This is a documented network diagnostics skill, but users should be careful with scans and DNS changes because they can affect real systems.

Install this only if you need command-line network diagnostics. Use scanning commands only on networks you own or are authorized to test, avoid broad or stealth scans unless approved, and review any DNS-setting command carefully because it can change system-wide name resolution and may require administrator privileges.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The DNS section documents commands that can modify system resolver settings, but it does not clearly warn users that running configuration commands may change active network behavior and could disrupt connectivity. In an agent skill context, omission of that warning increases the chance a user or autonomous agent executes state-changing commands without informed consent or proper safeguards.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal