The Inventions Researches And Writings Of Nikola Tesla

Security checks across malware telemetry and agentic risk

Overview

This appears to be a low-risk informational skill, with the main caution that it may activate too broadly in Tesla-related conversations.

Before installing, know that this skill may appear in Tesla-related conversations even when you did not explicitly ask for it. If that is distracting, narrow the trigger wording or invoke it only when you specifically want the skill's Tesla/book guidance.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 84% confidence
Finding: The skill declares very broad trigger phrases and entity mentions for common Tesla-related terms, which can cause the skill to activate in contexts where the user did not intend to invoke it. This creates a prompt-scope/control issue: the assistant may inject this skill’s instructions, onboarding, and mandatory formatting into unrelated conversations, reducing reliability and potentially overriding more relevant behaviors.

Vague Triggers

Low

Confidence: 80% confidence
Finding: The condition that the skill should trigger when the user 'doesn't know how to start' is underspecified and subjective, making activation hard to reason about and prone to accidental invocation. Because the skill also requires proactively presenting a full Quick Start, ambiguous activation can lead to unsolicited content insertion and conversation hijacking.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal