Export Compliance & Trade Controls

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only export compliance aid with no hidden code or data access, but its results should be treated as preliminary compliance guidance, not legal clearance.

Use this skill as a checklist and drafting aid only. Before acting on any export, sanctions, ECCN, license-exception, or end-user screening result, verify against current official BIS, OFAC, DDTC, EAR/ITAR, Entity List, SDN list, and Country Chart sources and get review from qualified export-compliance or legal personnel.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: This skill presents export-classification, sanctions-screening, and license-determination outputs in an authoritative operational format without clearly stating that the results may be incomplete, outdated, or not a substitute for qualified legal/compliance review. In this context, users could rely on the output to proceed with regulated international transactions, creating a real risk of unlawful exports, sanctions violations, fines, and other serious compliance consequences.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal