requirements-analysis
Security checks across malware telemetry and agentic risk
Overview
No concrete artifact-backed security concern was available in the supplied scan context, and the advisory scanner reported no issues.
Install only if the marketplace page and package files match the skill you intended to install. Because the artifact contents were not present for deeper local verification, review the skill files and install metadata yourself for unexpected file access, credentials, network use, or persistent behavior before using it with sensitive data.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.