skills/plurigrid/asi/vermillion-hunter/Snyk

vermillion-hunter

Fail

Audited by Snyk on Feb 16, 2026

Risk Level: CRITICAL

Full Analysis

CRITICAL E006: Malicious code pattern detected in skill scripts.

Malicious code pattern detected (high risk: 0.90). This is dual‑use security research but contains explicit, actionable instructions for DLL sideloading and COM hijacking that enable unauthorized code execution and persistence, representing a high-risk capability if misused.

MEDIUM W013: Attempt to modify system services in skill instructions.

Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt includes explicit exploit chains and usage patterns that instruct placing malicious DLLs, copying system binaries, and modifying registry entries (HKCU COM shadowing), which actively modify the machine state and enable privilege escalation/compromise.

Audit Metadata

Risk Level

CRITICAL

Analyzed

Feb 16, 2026, 12:36 PM