Auto Llm 4712 F2cf47

Security checks across malware telemetry and agentic risk

Overview

This is a simple markdown-only reference skill about auto_llm_4712/OpenCLI WEBUI and it does not run code or request sensitive access.

Install it only if you want brief reference guidance for auto_llm_4712 / an OpenCLI personal-assistant WEBUI. The main caveat is that it may activate for general auto_llm_4712-related questions, but the artifact itself has no code execution or sensitive access.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The trigger condition '用户需要auto_llm_4712相关帮助' is broad and underspecified, which can cause the skill to activate in contexts not explicitly intended by the user. In an agent system, overly vague activation rules increase the chance of accidental invocation, unexpected behavior, or the skill being selected when a more appropriate skill should handle the request.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal