Mes
Security checks across malware telemetry and agentic risk
Overview
This is a local command-line tracker that stores, lists, removes, and exports its own MES entries without hidden network, credential, or background behavior.
Install only if you want a local MES tracker. Treat ~/.mes and exported files as potentially sensitive, avoid storing secrets or regulated production data unless that local storage is acceptable, and be careful with remove because deletion is immediate and there is no built-in undo.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.