Ai First Aid

Security checks across malware telemetry and agentic risk

Overview

This first-aid skill is non-executable and mostly purpose-aligned, but it gives emergency medication instructions without enough safety limits.

Review before installing for medical-safety wording. It should emphasize calling emergency services first, following dispatcher or clinician instructions, using only the patient’s own prescribed emergency medication where applicable, and checking known allergies or contraindications before medication is suggested.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

High

Confidence: 96% confidence
Finding: The skill provides concrete drug-administration guidance for emergency scenarios, including nitroglycerin, aspirin 300mg, and epinephrine auto-injector use, but does not clearly limit use to medications already prescribed to the patient or directed by emergency professionals. In a high-stress first-aid context, users may administer contraindicated drugs, wrong doses, or another person’s medication, causing severe harm such as bleeding, hypotension, allergic complications, or delayed definitive care.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal