GESP作业

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward GESP homework worksheet generator with no executable code, credential access, background behavior, or hidden data handling.

Before installing, be aware that generic Chinese education prompts like “出题” or “练习卷” may invoke this skill when you intended a different worksheet generator. Otherwise, its requested behavior is limited to generating local homework and answer Markdown content.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The trigger list includes broad everyday terms like `出题` and `练习卷`, which can cause the skill to activate in contexts the user did not explicitly intend. That increases the chance of accidental invocation, context hijacking between overlapping skills, or unintended file/content generation in workflows that dispatch by keyword matching.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal