Security audit

Economic Moat

Security checks across malware telemetry and agentic risk

Overview

This is a business-analysis guidance skill made of Markdown files, with no executable behavior or hidden access to user data.

Reasonable to install if you want a structured economic-moat analysis aid. Be aware it may activate during broad business-strategy discussions, and treat its investment-related output as analytical framing rather than financial advice.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The activation description mixes specific example phrases with broad conditions like "evaluating a company for investment or acquisition" and later "what stops competitors," which could match many general business conversations. It does not clearly bound when the skill should activate instead of adjacent strategy or analysis skills beyond a few exclusions.

Vague Triggers

Medium

Confidence: 93% confidence
Finding: Phrases such as "competitive advantage" and "what stops competitors" are common in everyday business discussions and may cause unintended invocation. The section provides only limited exclusions and does not distinguish this skill from broader startup, competitor, or strategy analysis requests.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.