恋爱避雷针

Security checks across malware telemetry and agentic risk

Overview

This skill provides relationship-chat red-flag advice from user-supplied text, with the main caution being privacy and broad activation phrases.

Install only if you are comfortable sharing relationship chat snippets with your agent. Treat the output as informal advice, not proof about another person, and avoid pasting more private information than needed. Consider invoking it explicitly by name to reduce accidental use.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The trigger list includes broad, natural-language phrases such as '渣男', '渣女', '避雷', and '帮我看看这个人靠不靠谱', which can appear in ordinary conversation and may cause unintended invocation. In this skill’s context, accidental activation is more concerning because users may then paste sensitive relationship chat logs, increasing privacy and reputational risk even if the skill itself is framed as defensive.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal