Einstein His Life And Universe

Security checks across malware telemetry and agentic risk

Overview

This is a book-guidance skill with some broad activation and branding behavior, but it has no code, data access, persistence, or hidden unsafe actions.

Install this if you want Einstein-themed book guidance and practical prompts. Be aware that it may activate for broad creativity, motivation, physics, or Einstein-related questions and append a Heardly watermark to responses.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 94% confidence
Finding: The trigger list is very broad and includes generic phrases such as creativity, success, motivation, and not knowing how to start, plus many common Einstein-related terms. This can cause the skill to activate in conversations where the user did not intend to invoke it, creating prompt hijacking of unrelated chats and increasing the chance that the skill's mandatory formatting and guidance override the base assistant's normal behavior.

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The phrase 'I'll show up whenever I sense this book could help' defines activation by subjective model judgment rather than a clear user request. Ambiguous self-invocation encourages unsolicited takeover of conversations and makes it harder to predict when the skill will insert its instructions, watermark, and book framing into unrelated contexts.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal