Debt Collection Recovery

Security checks across malware telemetry and agentic risk

Overview

This is a text-only debt collection playbook with no code execution or data access, but users should verify its legal and compliance content before using it.

Safe to install from a security perspective: it does not run code or ask for access. Before using its letters, scripts, statute references, or collection workflows, have a qualified legal or compliance reviewer verify the wording for the debt type, jurisdiction, timing, consumer-rights requirements, privacy obligations, and your actual authority to take the stated actions.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: This skill provides operational debt-collection templates, escalation guidance, payment-plan frameworks, and legal/compliance references without a prominent warning that outputs are not legal advice and must be reviewed for jurisdiction-specific consumer-protection, privacy, and collections-law compliance. Because debt collection directly implicates FDCPA-style restrictions, state law variations, unfair/deceptive practices risk, and sensitive personal data handling, users could rely on generated content that is incomplete, outdated, or misapplied and cause unlawful collection activity or consumer-rights violations.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal