Otterline Sports Predictions Professional | NBA & NHL AI Picks

Security checks across malware telemetry and agentic risk

Overview

Otterline is a coherent instruction-only betting-picks skill that calls disclosed public endpoints and does not request credentials, local data, persistence, or privileged actions.

Before installing, understand that this skill contacts Otterline/Supabase to fetch free sports-betting pick samples and includes a premium upsell. Treat the picks as entertainment, not financial advice, and avoid sharing personal or sensitive information in betting-related prompts.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The plain-English trigger example "What's the best bet today?" is broad enough to overlap with ordinary conversation and may cause the skill to activate unintentionally when a user is asking a general question rather than explicitly invoking this skill. In a betting-related skill, accidental activation is more concerning because it can steer users toward gambling content or promotional upgrade links without clear intent.

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal