Endurance

Security checks across malware telemetry and agentic risk

Overview

This appears to be a low-risk leadership/history skill with overly broad activation phrases, not behavior that threatens user data or system safety.

Safe to install if you want a Shackleton-inspired leadership skill. Be aware it may activate on generic leadership or resilience prompts; review or narrow its trigger phrases if you only want it used for Shackleton, the Endurance expedition, or closely related historical leadership discussions.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 96% confidence
Finding: The activation guidance includes broad phrases such as "Leadership under pressure," "Crisis leadership," "Never give up," and generic topic mentions like "survival" and "team cohesion." These are common expressions that could match many unrelated conversations, and the file does not provide exclusion conditions or negative examples to constrain when the skill should or should not activate.

Vague Triggers

Medium

Confidence: 96% confidence
Finding: The manifest says to trigger on phrases such as "Leadership under pressure," "Crisis leadership," "Team survival," "Never give up," and also broad mentions like "survival" and "leadership lessons." Several of these are generic expressions that could appear in many unrelated conversations, increasing the risk of unintended invocation because the scope and exclusions are not clearly constrained.

VirusTotal

59/59 vendors flagged this skill as clean.

View on VirusTotal