Technical Analysis Pro

Security checks across malware telemetry and agentic risk

Overview

This is a self-contained technical-analysis instruction skill with no hidden code execution, credentials access, persistence, or data exfiltration behavior found.

Install only if you want a technical-analysis assistant. Treat its outputs as educational market analysis, not financial advice or trading instructions. Review any generated Python examples before running them, and do your own backtesting, position sizing, and risk checks before using any strategy with real money.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 93% confidence
Finding: The skill’s trigger list is overly broad because it includes generic terms like "trading" and "charts," which are common in many unrelated conversations. This can cause unintended invocation of the skill, leading the agent to apply specialized financial-analysis behavior in contexts where it was not requested, increasing the risk of misrouting, irrelevant advice, or unsafe overreach in financial contexts.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal