tao-train-nvdinov2

Pass

Audited by Gen Agent Trust Hub on Jun 18, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No security issues were detected. The skill provides a comprehensive set of schemas and instructions for its stated purpose of managing NVDINOv2 model lifecycles.
  • [EXTERNAL_DOWNLOADS]: The skill references official Docker images from the NVIDIA Container Registry (nvcr.io). These are trusted, well-known services for the intended use case and do not pose a security risk.
  • [COMMAND_EXECUTION]: Shell command patterns are limited to the official nvdinov2 CLI and standard Docker operations. No suspicious or arbitrary shell command execution was found.
  • [PROMPT_INJECTION]: The skill includes instructions for the agent to resolve specific parameters based on user terminology (e.g., AutoML policy). This is an intended feature for parameter management and does not attempt to bypass safety filters or override core agent behavior.
  • [DATA_EXFILTRATION]: No hardcoded credentials or unauthorized data exfiltration patterns were identified. Sensitive fields like encryption keys use standard TAO defaults or placeholders.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 18, 2026, 04:36 PM
Security Audit — agent-trust-hub — tao-train-nvdinov2