TOSR Publish Then Update Test

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed, single-file lifecycle test skill and not evidence of malware, though it is not useful for normal users to install.

Install only if you are intentionally inspecting or running this TOSR lifecycle test. Do not treat it as a normal productivity skill, and use a test account or sandbox workflow before any real publish/update/delete API activity.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The skill explicitly describes performing create, update, and delete operations against the real API, including destructive deletion, without any warning, confirmation, scope restriction, or safety guardrails. Even if intended as an integration test, documenting and enabling destructive actions on a live endpoint increases the risk of accidental or unauthorized deletion if the skill is invoked in the wrong environment or with an unexpected slug.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal