Ma Playbook

Security checks across malware telemetry and agentic risk

Overview

This is a plain M&A guidance skill with checklists and playbooks, not code that can access systems or change data.

Install this if you want an agent to provide M&A planning checklists and integration guidance. Treat it as business strategy support, not legal, tax, or investment advice, and have qualified advisors review any real transaction decisions.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Low

Confidence: 89% confidence
Finding: The description says to use the skill for broad situations like "evaluating acquisitions" and "deal negotiation" without defining specific trigger phrases, exclusions, or scope limits. In a skill-routing context, this ambiguity can cause unintended invocation for general business strategy conversations that only partially relate to M&A.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal