AC Repair

Security checks across malware telemetry and agentic risk

Overview

This is a simple AC repair guidance skill with no code, install steps, credentials, or hidden system access.

Use normal caution when arranging in-person repair service: verify provider identity, pricing, insurance or guarantees, and avoid sharing unnecessary personal or payment information in chat.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The example trigger phrases are very broad and overlap with normal conversational queries such as asking how to use AC repair services or what features it offers. This can cause accidental invocation, routing user messages into the skill when the user may have intended a general question, which can degrade trust, produce unintended actions, or expose users to service-booking flows they did not explicitly request.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal