Chance Ssq Predictor

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed lottery-analysis helper that runs local calculations only, but its number recommendations should not be trusted for gambling decisions.

Install only if you want an entertainment-oriented SSQ statistics helper. Treat all recommended numbers as random entertainment, not as a way to improve winning odds, and be aware that the included blue-ball analysis has a verified bug and the package includes a manual Python script despite wording that says there is no executable code.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Description-Behavior Mismatch

Medium

Confidence: 97% confidence
Finding: This is a real logic flaw: `cmd_blue()` assigns `blue_missing, _ = analyze_missing(...)`, but `analyze_missing()` returns `(red_missing, blue_missing)`. As a result, the blue-ball report uses red-ball omission data indexed over a different domain, producing incorrect recommendations and misleading analysis output. In this skill’s context, the issue is not a systems-security exploit, but it is still dangerous because users may rely on materially wrong results when making gambling decisions.

VirusTotal

58/58 vendors flagged this skill as clean.

View on VirusTotal