Back to skill

Security audit

Web Animation Design

Security checks across malware telemetry and agentic risk

Overview

This is a markdown-only web animation guidance skill with no code execution or hidden data access.

This skill is reasonable to install as an animation-design reference. Be aware that its broad trigger phrases may activate it during some general UI conversations; treat its recommendations as guidance and override them when the project, accessibility requirements, or higher-priority instructions call for a different approach.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The trigger guidance includes very broad phrases such as 'make it smooth' and 'feels janky' alongside many generic UI terms, which can cause the skill to activate on loosely related requests. Unintended invocation can override more appropriate skills or inject irrelevant instructions into normal conversations, reducing reliability and potentially causing the agent to follow an unnecessarily constrained workflow.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.