Ai Video 55eeb0

Security checks across malware telemetry and agentic risk

Overview

This is a simple AI-video tutorial/reference skill with broad triggers but no privileged access, code execution, credentials, or persistence.

Safe to install if you want AI-video tutorial prompts and references. Be aware it may activate on vague AI-video requests, and independently verify any external video links or software-install advice before downloading tools from third parties.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 95% confidence
Finding: The trigger condition '用户需要ai-video相关帮助' is overly broad and can cause this skill to activate for vague, loosely related requests rather than explicit invocation. In a tool-oriented skill that references external video/installation content, broad matching increases the chance of unintended routing, irrelevant guidance, or exposure to unvetted instructions from merged sources.

Vague Triggers

Medium

Confidence: 95% confidence
Finding: The second trigger repeats the same broad 'related help' pattern for the merged sub-skill, creating another ambiguous activation path. Because this file combines multiple learned sources, an imprecise trigger further raises the risk of accidental invocation and unintended propagation of low-quality or unsafe external instructions.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal