Competitive Research

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent competitive research helper that mainly uses public web research and can optionally save reports locally.

Install this if you want structured competitive research briefs. Avoid putting confidential client strategy or non-public plans into research queries, and check the target report path or slug before using Deep Dive because an existing same-date report may be overwritten.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 75% confidence
Finding: The trigger phrases are broad enough to match generic requests like proposal prep, positioning work, content strategy, or 'understand this space,' which could cause unintended invocation. Over-broad activation can expose user prompts to unnecessary web research and optional file persistence paths, increasing the chance of unnecessary data handling or user confusion even if the skill itself is read-oriented.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal