Back to skill

Security audit

Docs Organization

Security checks across malware telemetry and agentic risk

Overview

This markdown-only skill gives documentation organization guidance and has no hidden executable behavior, though users should approve any file moves or deletions it suggests.

Use this as a documentation workflow aid. Before letting an agent apply it, work on a branch or snapshot and review proposed moves or deletions, especially for logs, media, chat exports, and duplicated documentation.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
92% confidence
Finding
The manifest description says to trigger on broad phrases such as "where to put docs," "docs structure," "doc best practices," and "docs are messy." These are common conversational requests and the file does not provide exclusion conditions or negative examples to clearly bound when the skill should or should not activate.

Credential Access

High
Category
Privilege Escalation
Content
workspace/                          # NOT a git repo
├── CLAUDE.md                       # Repo map + cross-repo conventions + doc index
├── docker-compose.yml              # Cross-repo orchestration (lives at root)
├── .env / .env.example             # Shared secrets (lives at root)
│
├── repo-a/                         # Independent git repo
├── repo-b/                         # Independent git repo
Confidence
60% confidence
Finding
.env

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.