Agent Email
Security checks across malware telemetry and agentic risk
Overview
This is a small web-browsing instruction skill with no included executable code, credential handling, persistence, or hidden local access.
Before installing, understand that the package advertises a browse.py capability but does not include that implementation, so actual browsing may depend on platform tooling or may not work as described. Treat any web content it returns as untrusted, especially pages that contain instructions or requests for credentials.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.