Back to skill

Security audit

Meet

Security checks across malware telemetry and agentic risk

Overview

This is a meeting coaching skill with broad activation wording, but it is only a markdown instruction file and does not request access to data, tools, credentials, or background execution.

Reasonable to install for meeting preparation and facilitation. Because the activation wording is broad, confirm it is actually relevant before applying it to sensitive workplace, personnel, or interpersonal situations.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Vague Triggers

High
Confidence
95% confidence
Finding
The trigger description is unusually broad and includes many common workplace phrases and vague scenarios like any situation where people need to be in a room or on a call. This can cause the skill to activate outside narrowly intended contexts, leading to over-selection, inappropriate instruction injection into unrelated conversations, and reduced reliability of agent behavior.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.