Agent Hand

Security checks across malware telemetry and agentic risk

Overview

Agent Hand appears purpose-aligned, but its install and hook setup are broad enough that users should review them before installing.

Before installing, inspect the install script and prefer a pinned release or verified package. Do not run the bulk hook installer until you know which files it changes, what session data it can read, whether any data leaves your machine, and how to disable or remove the hooks.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: The installation command downloads a script from the internet and immediately executes it with bash, giving the remote content full code-execution privileges on the user's machine. This is dangerous because any compromise of the source repository, network path, or referenced script can silently lead to arbitrary command execution, and the skill provides no warning or verification step.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal