NEXO Brain
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed local persistent-memory skill for agents, with no scanner or artifact evidence of hidden exfiltration, destructive behavior, or deception.
Install this only if you want an agent memory layer that persists across sessions. Review or clear `~/.nexo` when working on sensitive projects, because the skill is designed to retain conversation, task, preference, reminder, and error-history data locally.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.