Security audit

Freelance Developer Coach

Security checks across malware telemetry and agentic risk

Overview

This is a markdown-only freelance coaching skill with no executable behavior; its main risk is ordinary advice quality around tax, legal, and jurisdiction-specific topics.

Use this skill as a planning aid, not as legal, tax, insurance, or financial advice. Share only the business details needed for coaching, anonymize client information where possible, and confirm contracts, entity setup, tax filings, retirement, and insurance decisions with qualified professionals in your jurisdiction.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The manifest description contains very broad trigger phrases spanning jobs, taxes, contracts, and insurance, which can cause the skill to activate in ordinary conversations outside its intended scope. Over-broad routing can hijack user intent, leading to inappropriate specialized guidance on sensitive legal, tax, or career topics without sufficient context or explicit user request.

Natural-Language Policy Violations

Medium

Confidence: 84% confidence
Finding: The skill explicitly frames tax and entity guidance as US-focused, while also claiming to serve EU/UK and broader international freelance scenarios. If routed to non-US users without locale detection and tailored disclaimers, it can produce inapplicable or misleading legal/tax guidance, especially around entities, payroll classification, and regulatory obligations.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal