Security audit

Intuition Development Guide

Security checks across malware telemetry and agentic risk

Overview

The available signals show a clean, low-risk intuition guidance skill, with only a minor concern that broad trigger phrases could activate it unintentionally.

Before installing, be aware that casual phrases about trusting your gut or developing intuition may activate the skill more often than expected. The available security telemetry is clean, and there is no artifact-backed evidence of data theft, destructive behavior, or privileged access, but confidence is low because the submitted skill artifact was not available for direct inspection in the workspace.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The trigger phrases are broad, natural-language requests such as 'trust your gut' and 'develop intuition' that are likely to appear in ordinary conversation. This can cause the skill to activate unintentionally, hijack unrelated requests, or steer users into skill-specific behavior when they did not explicitly ask for it.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.