Back to skill

Security audit

IceCube Content Factory

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only social content drafting skill with no code execution or account access, though users should notice its broad activation wording and local draft-memory format.

Install only if you want a skill that may actively shape ordinary content-writing requests toward viral social-media formats. Avoid confidential campaign plans or proprietary drafts unless you are comfortable with possible local retention in the memory/content output format, and always review generated content before posting.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
88% confidence
Finding
The skill advertises very broad trigger phrases like 'content creation', 'viral posts', and 'social media content', which can cause the skill to activate for many ordinary writing requests beyond the user's likely intent. Overbroad auto-invocation is risky because it can unexpectedly steer conversations, apply persuasive engagement tactics, or influence outputs in contexts where the user did not explicitly ask for this specialized behavior.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill specifies writing generated content and later performance metrics to a persistent path under memory/content/YYYY-MM-DD.md without any notice, consent flow, retention policy, or data minimization guidance. This creates a privacy and data-governance risk because user-supplied topics, drafts, business ideas, and analytics could be stored unexpectedly and retained longer than intended.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.