Product Desc Writer

Security checks across malware telemetry and agentic risk

Overview

This is a markdown-only product-copywriting skill with an unrelated but visible paid-upgrade link and crypto address, and no executable behavior or data access.

The skill appears low risk to install from a security perspective, but treat the Pro upgrade payment links as ordinary third-party payment requests: verify the publisher and destination independently before sending money, and do not provide wallet credentials or private keys.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Description-Behavior Mismatch

Low

Confidence: 94% confidence
Finding: The skill file includes explicit payment solicitation, an external PayPal link, and a cryptocurrency wallet address inside operational documentation for a product-description skill. While not direct code execution, this introduces unrelated monetization content that can manipulate users, route them off-platform, and normalize trust in external payment requests embedded in skills.

Vague Triggers

Medium

Confidence: 79% confidence
Finding: The invocation guidance is poorly formed and overly broad, including malformed text that blends a payment prompt into example usage. This can cause ambiguous triggering and may steer an agent or user toward unrelated actions such as opening payment flows instead of performing the stated copywriting task.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal