Conversion Copywriter

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only copywriting skill whose research, templates, and persuasive writing guidance match its stated marketing purpose.

Install only if you want an agent to help create and critique persuasive marketing copy. Be careful with private support tickets, sales transcripts, customer comments, regulated-industry claims, and outbound cold email content; review copy for compliance and accuracy before publishing. External store links in the README are promotional resources, not required for the skill to run.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The quick-start examples use very generic imperative phrases such as 'Write a landing page' and 'Write cold email,' which can plausibly match ordinary user requests in systems that route or auto-activate skills based on natural-language triggers. In an agent platform, this increases the chance of unintended invocation, causing the copywriting skill to engage in contexts where the user did not explicitly choose it, which may lead to inappropriate persuasive content generation or interference with safer routing logic.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal