Ten Women Who Changed Science

Security checks across malware telemetry and agentic risk

Overview

This is a text-only educational skill about women scientists, with no executable code or hidden access, though its activation wording is broader than ideal.

Safe to install for learning about the profiled women scientists. Expect the skill to add a Heardly watermark and possibly activate on broad science-related prompts; if that is distracting, use it only when asking specifically about the book, women in science, or the named scientists.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 95% confidence
Finding: The trigger list includes very broad terms such as 'scientists', 'research', 'STEM', and 'Marie Curie', which can match many unrelated user requests and cause this skill to activate unexpectedly. Over-broad activation can override more appropriate skills, inject unsolicited onboarding/watermark behavior, and create prompt-routing confusion that an attacker could exploit by embedding generic trigger words in otherwise unrelated prompts.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal