Subly pay
Security checks across malware telemetry and agentic risk
Overview
The skill artifacts are coherent administrative and development helpers with sensitive actions disclosed and gated by user confirmation or existing authentication.
Install only if you want these repo-maintenance workflows. Before using moderation, email, production migration, deploy, or autoreview commands, verify the target, auth context, confirmation gates, and whether the autoreview helper should be run with --no-yolo for tighter containment.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.