企业-出海产能与机构外扩监测

Security checks across malware telemetry and agentic risk

Overview

This is a single-file Chinese research skill that guides public-source business analysis and does not request code execution, credentials, persistence, or privileged access.

Install this if you want Chinese-language, public-source corporate expansion research. Treat its investment and strategy sections as analytical output, not financial advice, and verify cited sources before using the report for business decisions.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Natural-Language Policy Violations

Medium

Confidence: 92% confidence
Finding: The skill is written entirely in Chinese and does not offer any language selection or document that it is intentionally restricted to Chinese-speaking users. This can cause users or upstream agents to misunderstand instructions, inputs, outputs, and safety-relevant constraints, leading to incorrect analysis or misuse of the skill. In this context, the skill produces business intelligence reports rather than executing privileged actions, so the issue is primarily reliability, accessibility, and safety-of-use rather than direct code execution.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal