Game Quality Gates

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only game development checklist skill with disclosed, purpose-aligned behavior and no evidence of hidden execution or data access.

Reasonable to install if you want automatic game-quality checklist guidance. Be aware it may activate for many game-development tasks, and if installing manually from GitHub, review future updates before pulling them.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 82% confidence
Finding: The installation guide states that the skill auto-triggers for broad categories such as building, reviewing, debugging, and deploying any game project. In an agent-skill context, overly broad activation can cause the skill to run in many normal workflows without clear user intent, increasing prompt-surface exposure and the chance that security-relevant instructions are injected into unrelated tasks.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal