Ads Pixel Readiness

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only ad tracking audit skill with no executable code, credential use, persistence, or hidden behavior found.

Reasonable to install for ad tracking and attribution readiness work. Share only the account IDs, campaign IDs, logs, and contacts needed for the specific audit, and manually review any recommended pauses, rollbacks, or tracking changes before applying them in live ad platforms.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The trigger conditions are broad enough to activate on generic advertising and growth discussions that are not specifically about pixel installation, event integrity, or attribution readiness. This can cause the agent to invoke the skill in the wrong contexts, leading to irrelevant guidance, confusion, and potentially unsafe business actions if users rely on mis-scoped operational recommendations.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal