Skill
Security checks across malware telemetry and agentic risk
Overview
This is a coherent git-history search helper with disclosed local indexing and no evidence of hidden or unrelated behavior.
Install only if you are comfortable letting the tool index the git history of repositories you run it in. Git history can contain old secrets or sensitive past commits, and the optional MCP server can make indexed history available to connected agents; use npx for trial use if you do not want a global npm install.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
VirusTotal findings are pending for this skill version.