Back to skill

Security audit

Affiliate Partner Program Generator

Security checks across malware telemetry and agentic risk

Overview

This is a prompt-only affiliate marketing toolkit with compliance risks in generated copy, but no hidden execution, credentials, persistence, or autonomous posting behavior.

Safe to install as a prompt pack, but treat outputs as draft marketing copy: replace fictional personal anecdotes with real experience, substantiate performance and competitor claims, include clear affiliate disclosures in every channel, and avoid entering confidential partner or revenue data unless needed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Low
Confidence
92% confidence
Finding
This prompt operationalizes affiliate marketing at scale by generating emails, social posts, endorsements, comparison tables, and promotional claims, but it provides only minimal compliance guardrails beyond a brief FTC disclosure mention. In practice, this can lead users to produce misleading testimonials, unsubstantiated comparative claims, inaccurate performance statements, or noncompliant endorsements, creating legal, platform, and reputational exposure for both the company and partners.

VirusTotal

49/49 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.