patent-invalid-search

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent patent prior-art search and report workflow with expected web searches and Word document generation.

Safe to install for patent search workflows. Before use, avoid entering confidential invention details unless external patent-search queries are acceptable, confirm where generated .docx reports should be saved, and review the legal analysis and visible Patsnap disclaimer before sharing or relying on the report.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Low

Confidence: 90% confidence
Finding: The skill instructs the agent to create and save a .docx file for the user, but it does not require an explicit user-facing notice or confirmation before writing a local file. Silent file creation is risky because it can surprise users, violate workspace expectations, or be chained with other behaviors to leave unintended artifacts on the host environment.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal