Copywriting Pro

Security checks across malware telemetry and agentic risk

Overview

This is a text-only marketing copywriting helper with no executable code, credentials, persistence, or local data access.

Safe to install for marketing copywriting help. Review generated claims, metrics, and competitor references before publishing, and be aware it may activate on broad rewrite or copy-related requests.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 86% confidence
Finding: The trigger list includes common phrases such as "write copy for" and "improve this copy," which are broad enough to match ordinary conversation outside a deliberate request to invoke this skill. That can cause unintended activation, leading the agent to apply this skill in contexts where the user did not explicitly want marketing-copy generation, though the skill itself is not inherently high-risk.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal