Tenant

Security checks across malware telemetry and agentic risk

Overview

This is a renter guidance skill with no code or hidden access, though users should treat its legal guidance as general support rather than professional legal advice.

Safe to install from an agentic-security perspective. Because the skill may discuss leases, deposits, disputes, and tenant rights, avoid sharing unnecessary personal details and consult a local tenant organization or licensed attorney for eviction risk, major financial disputes, or binding legal advice.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 93% confidence
Finding: The manifest description is very broad and covers nearly the entire renter lifecycle without clear invocation boundaries, so an agent may select this skill for many generic housing, legal, or communication requests. That increases the chance of over-activation, where the skill is applied outside its intended scope and provides jurisdiction-sensitive tenant guidance in situations that may require narrower or safer routing.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal