Vestibular Orchestrator

Security checks across malware telemetry and agentic risk

Overview

This is a Portuguese study-coordination skill with broad routing instructions but no executable code, credential access, network behavior, or destructive actions.

Install this only if you want a personalized Portuguese coordinator for Antonio's FUVEST study workflow. Review the broad mandatory-routing language and the embedded personal/TDAH profile details before use; the artifacts show no code execution, credential handling, external transmission, or destructive behavior.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: The activation criteria are extremely broad ('sempre', any mention of vestibular, progress, or next step), which can cause the orchestrator to intercept many unrelated or only tangentially related requests. In an agentic system, this overreach can misroute user intent, suppress more appropriate specialized handling, and create unsafe delegation or context contamination across sessions.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal