Gingiris Go Global

Security checks across malware telemetry and agentic risk

Overview

This is a static go-to-market playbook with no executable code, persistence, credential use, or hidden data flows.

Safe to install as a reference skill. Treat its launch and outreach tactics as strategic advice, and ensure any Product Hunt, Reddit, LinkedIn, or community actions comply with each platform's rules and are performed under your direct control.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 95% confidence
Finding: The markdown manifest-style header defines triggers such as "go global," "GTM," "cold start," and "launch strategy," which are broad business phrases used in many ordinary product discussions. The file does not provide scope limits, exclusion conditions, or negative examples to clarify when this skill should activate versus when a general conversation about go-to-market topics should not invoke it.

Natural-Language Policy Violations

Medium

Confidence: 94% confidence
Finding: This markdown file is written entirely in Chinese and does not indicate that other languages are available or that Chinese is an intentional, user-selected locale. Under the policy rule for natural-language violations, forcing a specific language without opt-in can be a policy concern when no justification or alternative is provided.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal