Codebase Documenter
Security checks across malware telemetry and agentic risk
Overview
This skill is a documentation helper with templates and guidance, and I found no evidence of hidden execution, credential access, persistence, or data exfiltration.
This skill is appropriate for drafting codebase documentation. Before installing, remember that it may read project files you ask it to document, and review generated docs to ensure real API keys, passwords, internal URLs, or production secrets are not copied into examples.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.