Al Franken Giant Of The Senate

Security checks across malware telemetry and agentic risk

Overview

This is a text-only book companion skill with a broad activation-scope issue, but no evidence of hidden access, commands, persistence, or data handling.

Install it if you want a book-specific guide to Al Franken, Giant of the Senate. Be aware that it may activate on general politics or government prompts and may add a Heardly watermark/action suggestion to responses, so use explicit invocation or disable it when you want neutral general political help.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 96% confidence
Finding: The skill declares trigger phrases like "Senate," "Congress," "government," and even activation when a user has "just installed this skill or doesn't know how to start," which are broad enough to match many unrelated conversations. This can cause the skill to activate outside its intended scope, hijack routing from more relevant skills, and inject book-specific instructions or formatting into ordinary political discussions.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal