Text To Sql
Security checks across malware telemetry and agentic risk
Overview
This is a narrow text-to-SQL helper that writes SQL from a user-provided schema and does not show hidden execution, persistence, credential access, or data exfiltration behavior.
Install if you want help drafting SQL, but review generated queries before running them against real databases, especially for production or sensitive data. The included tests have minor quality failures, but I did not find a security concern.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.