Umnix constitution for ai agents
Security checks across malware telemetry and agentic risk
Overview
This is a documentation-only governance skill that explains AI-agent constitutions and does not install code, request credentials, or run actions.
Install this as guidance, not as an enforcement tool. Do not place passwords, API keys, personal data, financial credentials, trade secrets, or sensitive internal procedures into constitutions, because the artifact says constitutions are public by design. Human organization admins should review and approve any constitution or amendment before activation.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.