Medical Entity Extractor

Security checks across malware telemetry and agentic risk

Overview

This instruction-only skill appears focused on extracting medical details, but users should treat patient text as sensitive because Claude API processing may send it outside the local environment.

Before installing, confirm that your organization permits patient messages to be processed by the configured LLM provider, de-identify text where practical, and use the extracted entities as assistive output that still requires clinical review.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill processes patient messages containing health information and explicitly notes that data may be sent to the Claude API, but the privacy section frames processing as local and does not clearly disclose the implications of transmitting PHI/PII to an external LLM provider. In a medical context, incomplete disclosure can cause operators to unknowingly send sensitive regulated data to third parties, creating compliance, confidentiality, and data governance risk.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal