AI Video Script Generator

Security checks across malware telemetry and agentic risk

Overview

This skill is a Chinese-language video script writing helper with no evidence of hidden access, code execution, data collection, or persistence.

Reasonable to install for Chinese video-script drafting. Users should review generated scripts before publishing for factual accuracy, copyright issues, advertising claims, and platform rules; also expect it may activate on broad terms like video script, storyboard, or short-video copy.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The trigger phrases are very broad and closely match common user intents such as '视频脚本', '分镜', and '短视频文案'. This can cause the skill to activate unintentionally during ordinary conversations, leading to prompt hijacking of unrelated requests, reduced routing precision, and unexpected content generation.

Natural-Language Policy Violations

Medium

Confidence: 86% confidence
Finding: The description indicates Chinese-only behavior without offering language choice or clearly scoping the supported locale. This can cause mismatched outputs for users interacting in other languages, increasing the chance of confusion, misrouting, or unreliable downstream use in multilingual environments.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal