turing-shikuan-skill
Security checks across malware telemetry and agentic risk
Overview
This skill is a disclosed product-image recognition helper that configures and uses a remote Turing MCP service with user-provided credentials.
Before installing, confirm you trust the Turing MCP endpoint and the mcporter package, use limited API credentials where possible, keep MCP config files containing headers out of version control, and only submit image URLs you are comfortable sending to the external service.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.