The Health Gap

Security checks across malware telemetry and agentic risk

Overview

This appears to be a public-health reading or analysis skill with overly broad activation terms, but no evidence of hidden access, persistence, or harmful behavior.

Install this if you want help discussing The Health Gap or Marmot-style health-inequality topics. Be aware it may activate on general public-health language, so users should confirm they want that specific framing when discussing broader health policy topics.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 93% confidence
Finding: The trigger list includes very broad phrases such as 'public health', 'social determinants', and related generic health-policy terms that are likely to appear in ordinary conversation outside the skill's intended scope. This can cause the skill to activate unexpectedly, overriding more relevant skills or steering users into a domain-specific framing they did not request, which is a prompt-routing security and reliability issue.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal