Security audit
China Stock Analysis Custom
Security checks across malware telemetry and agentic risk
Overview
This is an instruction-only stock analysis skill that uses public web searches and does not request credentials, install code, or modify accounts.
Safe to install from a security perspective, but treat its stock recommendations as informational only. Verify prices and news independently, and avoid sharing private portfolio, brokerage, or account details in prompts.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
