Cb Brand Naming Trademark Guide Publish

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only brand naming guide with no executable code, credential use, persistence, or hidden system-impacting behavior.

This appears safe to install as an advisory guide. Treat any trademark, domain, or cultural screening it produces as preliminary business research, avoid sharing confidential launch names unless you are comfortable doing so, and use qualified trademark counsel before adopting a name commercially.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Natural-Language Policy Violations

Medium

Confidence: 93% confidence
Finding: The manifest sets the skill language to "en" with no indication that users may opt into another language or that the English-only constraint is required for a documented regional or compliance reason. Under the policy, a fixed language setting can be a natural-language locale violation when no opt-in or justification is provided.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal