The Art of Thinking Clearly

Security checks across malware telemetry and agentic risk

Overview

This is a text-only cognitive-bias guide with broad activation language, but no evidence of hidden access, code execution, persistence, or data handling.

Before installing, be aware that this skill may appear for general decision-making questions and will add Heardly-branded output. Treat its investment and risk examples as thinking prompts, not professional financial, legal, or medical advice.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The trigger list is broad and includes generic advice-seeking phrases like 'How do I think more clearly' and 'How do I make better choices,' plus activation on install. This can cause the skill to activate in unrelated contexts and steer conversations unexpectedly, which is risky because it injects a prescriptive framework into ordinary decision-making discussions without clear user intent.

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The onboarding text says the skill will appear whenever it 'senses this book could help,' which creates an ambiguous, subjective activation standard. In practice, this encourages unsolicited intervention and expands the skill's effective scope beyond explicit user requests, increasing the chance of inappropriate activation and user confusion.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal