Company Profiling
Security checks across malware telemetry and agentic risk
Overview
This skill appears to be a legitimate PatSnap company-research helper, with the main caution being that it requires a PatSnap API key.
Install this only if you intend to use PatSnap LifeScience services. Use a dedicated API key if possible, keep the MCP URL private, verify the PatSnap endpoint before adding it, and expect company names, research prompts, and tool parameters to be sent to PatSnap during use.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
44/44 vendors flagged this skill as clean.