Game Ops Monitor

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed game-server monitoring guide that queries a configured Scouter Collector and optionally sends alerts, with no hidden executable payloads found.

Install this only where the agent is allowed to query operational game-server metrics. Prefer explicit prompts such as naming game-ops-monitor or the target server, verify the Scouter Collector URL is trusted, and review any cronjob or Feishu/DingTalk webhook setup before enabling recurring alerts.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The listed trigger phrases are short, generic operational requests that could collide with normal conversation, causing the monitoring skill to activate unexpectedly or capture requests intended for another tool. In an ops context, accidental invocation can expose server-health data, generate reports, or send notifications without clear user intent, making this a genuine prompt/skill-routing weakness.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal