Autonomy The Quest To Build The Driverless Car

Security checks across malware telemetry and agentic risk

Overview

This is a text-only book companion skill with no executable code, credentials, persistence, or data access, though its trigger terms are somewhat broad.

Installers should expect a book-summary assistant that may activate on general autonomous-vehicle or transportation questions and append a Heardly attribution. Because the book and some claims are dated, users should verify current self-driving industry facts from up-to-date sources.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 96% confidence
Finding: The trigger list includes very broad terms such as "autonomous," "mobility," and "transportation," which can appear in many ordinary discussions beyond this specific book skill. The additional condition that it triggers when a user "just installed this skill or doesn't know how to start" is also ambiguous and lacks clear boundaries or exclusion conditions.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal