网红美术馆

Security checks across malware telemetry and agentic risk

Overview

This is a small guidance-only art museum recommendation skill with some loosely matched ticketing/event wording, but no code, persistence, credentials, or automatic actions.

Install this only if you want museum and exhibition recommendation help. Treat ticketing, refund, seating, and venue details as planning prompts to verify with official venues before making reservations or purchases, since the skill wording is somewhat broad and event-oriented.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Description-Behavior Mismatch

High

Confidence: 95% confidence
Finding: The skill is labeled as an art museum recommendation guide, but its documented filters and outputs describe concert/event ticketing concepts such as seat obstruction, distance to stage, ticket tiers, refunds, and security screening. This semantic mismatch can cause the orchestrator to invoke the skill for unrelated user intents, leading to incorrect guidance, unsafe booking/travel decisions, or routing users into the wrong transactional flow.

Vague Triggers

Low

Confidence: 79% confidence
Finding: The invocation description is broad enough to match generic travel-planning queries, which increases the chance of over-triggering the skill outside its intended domain. Overbroad routing is a security and safety concern because users may receive irrelevant or misleading recommendations from a mismatched skill, especially when travel or purchase decisions are involved.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal