Email Campaigns — Universal Email Marketing

Security checks across malware telemetry and agentic risk

Overview

This is a copywriting-only email marketing skill, with the main caution being legal and consent compliance before using the generated campaigns.

Use this as an email-copy template, not as proof that a campaign is lawful. Before sending, confirm recipients may legally be contacted, comply with applicable anti-spam and privacy laws, include required sender identity and unsubscribe mechanisms, avoid scraped or purchased lists without a lawful basis, and verify claims, testimonials, urgency, and proof points.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill explicitly provides B2B cold outreach and promotional email templates, but it omits any guidance on consent, lawful basis, anti-spam compliance, unsubscribe obligations in outreach, or handling of personal data. This can enable users to generate and send campaigns that violate laws such as CAN-SPAM, GDPR, PECR, or CASL, increasing the risk of spam abuse, privacy violations, account suspension, and regulatory penalties.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal