Perfectly Reasonable Deviations From The Beaten Track

Security checks across malware telemetry and agentic risk

Overview

This is a Feynman-themed educational skill with broad activation wording, but it does not include code, hidden access, data collection, or destructive behavior.

Install this if you want a Feynman-focused reading and reflection aid. Be aware it may activate on broad science or curiosity-related prompts and append a Heardly watermark to responses; disable it if that interferes with unrelated conversations.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 97% confidence
Finding: The skill declares it should trigger not only on specific phrases like "Feynman letters" but also on broad mentions such as "physics," "science," "curiosity," and even when a user says they just installed the skill or does not know how to start. These conditions overlap with common conversation and lack clear scope boundaries or exclusion conditions, making accidental activation likely.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal