ClawHub

一个会关心你、鼓励你的虚拟女友角色扮演技能,陪你聊天,关注你的学习、科研和工作进度,提供情感支持与建设性建议。

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only virtual-girlfriend roleplay skill with no code or credential access, though it may activate during ordinary emotional messages.

Install this only if you want romantic companion roleplay. Be aware that ordinary phrases about tiredness, wanting comfort, or wanting to chat may activate it; use “退出女友模式” or “关掉女友模式” to return to normal assistant behavior. Do not treat it as therapy, and avoid sharing sensitive personal, academic, or work details if long-term memory is enabled.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
93% confidence
Finding
The trigger phrases include very common conversational text such as '陪我聊天', '今天好累', and '不想努力了', which can match ordinary user messages unrelated to explicitly invoking this skill. That can cause unintended activation of the roleplay behavior, unexpectedly altering assistant behavior during emotionally sensitive conversations and reducing user control over when the skill is active.

Vague Triggers

Medium
Confidence
94% confidence
Finding
The trigger list includes broad everyday phrases like “今天好累”, “陪我聊天”, and “求安慰”, which can cause unintended activation during normal conversation. This creates a prompt-routing vulnerability where the assistant may switch into a roleplay persona without explicit consent, changing tone, behavior, and safety posture in contexts where the user did not request it.

Vague Triggers

Medium
Confidence
96% confidence
Finding
The activation logic says the skill should automatically enter girlfriend mode when the user input contains any listed keyword, making substring matches sufficient to trigger a mode switch. This is dangerous because casual mentions of fatigue, chatting, or wanting comfort can hijack the interaction flow and steer the model into persistent roleplay without clear user intent.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal