企业背景调查/商业信息查询PLUS版

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed business due-diligence report template that relies on public company information and does not install code, run commands, persist, or request credentials.

Install only if you want a structured company due-diligence workflow. Use it with a clearly named target company and scope, verify cited sources yourself, and treat ratings, forecasts, migration likelihood, and negotiation suggestions as analytical opinions rather than legal, financial, or investment advice.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The trigger conditions are very broad and overlap with common enterprise research, due diligence, partner review, and risk-analysis requests. This can cause the skill to activate unintentionally for general user queries, leading to over-collection of sensitive business/personnel information, unexpected profiling, or bypass of a more appropriate general-purpose response path.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal