Back to skill

Security audit

UAE clinic-marketing-uae

Security checks across malware telemetry and agentic risk

Overview

This is a text-only UAE clinic marketing guide with compliance reminders and no code, credential access, persistence, or hidden behavior.

This appears safe to install from a security perspective. Users should treat its healthcare marketing advice as a starting point and verify current UAE DOH/DHA advertising, consent, privacy, and platform rules before using any campaign, review request, or patient outreach workflow.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Vague Triggers

Medium
Confidence
84% confidence
Finding
The trigger list contains several broad, generic phrases such as clinic SEO, clinic social media, and patient acquisition that could cause the skill to activate for ordinary marketing queries beyond the intended compliance-focused UAE clinic context. Over-broad routing is dangerous because it can inappropriately inject domain-specific instructions into unrelated requests, increasing the chance of misleading guidance or unintended policy/application behavior.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.