Stoic Quotes

Security checks across malware telemetry and agentic risk

Overview

This is a simple quote skill that reads its bundled Stoic quote file and does not request code execution, credentials, network access, persistence, or account changes.

Reasonable to install if you want Stoic quotes. Be aware it may answer some generic quote or inspiration requests with Stoic content, and verify exact attribution if scholarly accuracy matters.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The trigger conditions are broad enough to activate on generic requests for philosophical wisdom or guidance, not just explicit requests for Stoic content. This can cause unintended skill invocation, leading to incorrect routing, user confusion, or overshadowing of more appropriate skills, though it does not directly create a code-execution or data-exfiltration risk.

Vague Triggers

Medium

Confidence: 95% confidence
Finding: Including 'Quote of the day' as an example trigger is overly broad and likely to collide with ordinary conversation unrelated to Stoicism. This increases the chance of accidental invocation and misclassification of user intent, which can degrade system behavior and produce irrelevant responses.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal