WhatsLink
Security checks across malware telemetry and agentic risk
Overview
This skill is a narrow WhatsLink metadata lookup helper that is clear about sending public URLs to a third-party service and does not download, open, persist, or modify content.
Install only if you are comfortable sending public link URLs to WhatsLink or a chosen compatible endpoint. Do not use it with private links, signed URLs, tokens, internal resources, or confidential documents; screenshot URLs may reveal sensitive content even though the skill does not open or download them by default.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.