Back to skill

Security audit

Skill Security Scanner

Security checks across malware telemetry and agentic risk

Overview

This is a coherent local security scanner, but its HTML reports can include unescaped scanned code and its optional VirusTotal documentation is under-disclosed.

Install only if you are comfortable with a work-in-progress scanner. Run it on narrow directories, treat generated reports as sensitive because they may contain code or secrets, avoid opening HTML reports from untrusted scans until HTML escaping is fixed, and enable any future VirusTotal integration only for artifacts your policy allows sharing with a third party.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
86% confidence
Finding
The README advertises optional VirusTotal integration but does not clearly disclose that using this feature may send file hashes, filenames, or other file-derived metadata to a third-party service. In a security-scanning skill, this omission can cause users to expose sensitive project information without informed consent, especially when scanning private or unreleased code.

Missing User Warnings

Low
Confidence
82% confidence
Finding
The quick-start section shows exporting and passing a VirusTotal API key but does not warn users about secure credential handling, such as avoiding shell history leaks, logs, shared terminals, or committing secrets into scripts. While this is documentation-level rather than code-level risk, it can still encourage unsafe operational practices.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The documentation encourages optional VirusTotal integration using an API key but does not disclose that submitting files, hashes, or related metadata may send potentially sensitive customer or proprietary data to a third-party service. In a security-scanning skill, this omission is important because users may assume all analysis is local and unknowingly exfiltrate private code artifacts.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

Detected: suspicious.dynamic_code_execution, suspicious.exposed_secret_literal

Dynamic code execution detected.

Critical
Code
suspicious.dynamic_code_execution
Location
tests/test_scanner.py:38

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
source/cli.py:42

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
source/scanner.py:28

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
tests/test_scanner.py:89