Tech Data Playbook

Security checks across malware telemetry and agentic risk

Overview

This is a Markdown-only technology strategy playbook with broad activation wording but no hidden execution, data access, credentials, or persistence behavior.

Install this only if you want a broad technology-advice playbook to shape answers across many engineering, cloud, security, data, and AI topics. Before using the README command, verify the GitHub repository and consider whether `--global` and `--yes` fit your environment.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

High

Confidence: 96% confidence
Finding: The skill is configured to trigger on essentially any technology-related discussion and even says 'If in doubt, use this skill,' which creates an overbroad activation surface. In an agent environment, this can cause the skill to be invoked outside the user's actual intent, increasing the chance of irrelevant instruction injection, policy conflicts, or unintended steering of responses.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal