Marketing Principles

Security checks across malware telemetry and agentic risk

Overview

This is a text-only marketing advice skill with no code execution, data access, credentials, or persistence; its only notable issue is somewhat broad invocation wording.

This skill appears safe to install as a marketing strategy helper. Be aware it may be invoked for broad business or strategy questions, so review its advice for fit, and avoid sharing confidential customer or business data unless you are comfortable using that data in your agent session.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The skill description includes broad triggers like "needs strategic thinking," "should I do X," and "what would work here," which can match many ordinary user requests outside narrowly scoped marketing use cases. This can cause the skill to be invoked in inappropriate contexts, leading to irrelevant guidance, reduced reliability, or accidental interception of requests better handled by more specialized skills.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal