Motor Drawing Review

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed motor-drawing checklist/reference aid, but it should not be treated as automated engineering validation.

Install only if you want a checklist/reference aid for motor drawing review. Do not rely on it as certified engineering validation or proof that a drawing is correct; have a qualified engineer review safety-critical designs, and be aware that the structural checklist command currently has a non-security runtime bug.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Tp4

High

Category: MCP Tool Poisoning
Confidence: 91% confidence
Finding: The skill claims to review motor engineering drawings and produce review reports, but the content shown only provides static checklists and wrapper commands, with no evidence that it actually reads or analyzes drawing files. This can mislead users into trusting a report as if it were based on real engineering validation, creating safety, quality, and compliance risks in a domain where incorrect drawings can affect manufactured hardware.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal