中文小说写作

Security checks across malware telemetry and agentic risk

Overview

This is a Chinese novel-writing workflow that saves chapters and project notes locally, with no executable code or hidden data handling found.

Install this if you want a Chinese-focused fiction workflow that maintains local per-book notes and Markdown chapters. Review the generated memory files if they may contain sensitive story notes, private preferences, or copyrighted source summaries.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Natural-Language Policy Violations

Medium

Confidence: 91% confidence
Finding: The skill metadata hard-codes Chinese-only behavior in the display name, description, and default prompt without indicating that the user can choose another language. This can override user expectations or downstream system assumptions about language, causing usability, transparency, and policy-compliance issues, though it is not an exploit primitive by itself.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal