Security audit
random-fact
Security checks across malware telemetry and agentic risk
Overview
This is a simple trivia skill that only tells prewritten random facts and does not request access to files, accounts, tools, or the network.
This appears low risk to install. The main thing to consider is factual accuracy of the trivia list; the artifacts do not show behavior that accesses private data, changes your environment, or performs actions outside the chat.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
