招商-智能日报生成器
Security checks across malware telemetry and agentic risk
Overview
This skill is a report-generation prompt that uses public web search to create investment-attraction daily reports, with no executable code or hidden data access.
Installers should expect the skill to perform web searches and produce business reports from public sources. Review generated facts and citations before using the report for decisions, but the artifact itself shows no suspicious execution, persistence, credential use, or hidden data handling.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.