API Design Principles
Security checks across malware telemetry and agentic risk
Overview
This is a coherent API design reference skill with example code and no evidence of hidden access, data collection, persistence, or malicious behavior.
Safe to use as an API design reference. Before running the README install command, verify the GitHub source or use a pinned trusted version. If copying the FastAPI template into a real service, restrict CORS, review exposed host and port settings, and add production authentication and rate limiting as appropriate.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.