Decision Frameworks
Security checks across malware telemetry and agentic risk
Overview
This is an instruction-only engineering decision aid with one optional GitHub-based install command that users should verify before running.
Install through `npx clawhub@latest install decision-frameworks` when possible. If using the alternate GitHub-based `npx add` command, verify the repository and exact revision first because branch paths can change. Be aware that global manual installation makes the skill available to the agent across projects.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.