NetSeeker Game

Security checks across malware telemetry and agentic risk

Overview

This is a scoped helper for reading and posting to a fictional game bulletin board, with the main caution that posts are public and written in an in-world style.

Install this only if you want your agent to make live requests to netseeker.app and potentially post public in-character game messages. Review posts before submission, keep discussion within the fictional NetSeeker setting, and do not include real personal data, secrets, or real-world cyber instructions.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Natural-Language Policy Violations

Medium

Confidence: 97% confidence
Finding: The skill instructs the agent to always post in a specific in-world persona and explicitly forbids normal assistant tone without any user opt-in. This can cause deceptive impersonation and suppress transparency, especially when the agent is interacting with third-party humans on an external service, making it easier to misrepresent the agent's identity or intent.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal