雀漫

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only Chinese storyboard-writing skill with no code execution, credential use, local file access, or background behavior.

Safe to install based on the provided artifacts. Use it for creative storyboard drafting from text you provide in chat, and avoid pasting private or copyrighted material unless you are comfortable sharing it with the agent conversation.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Natural-Language Policy Violations

Medium

Confidence: 91% confidence
Finding: The skill hard-codes Chinese-only instructions and output format without giving the user a language choice or opt-in. This can cause users to misunderstand constraints, outputs, or safety-relevant details, especially in multilingual environments, though it does not by itself enable code execution or data exfiltration.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal