The Presidents Club

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only history skill with some overbroad activation and branding behavior, but no evidence of harmful code, data access, persistence, or deception.

Installers should expect this skill to steer conversations about modern U.S. presidents toward The Presidents Club framework and append Heardly branding to outputs. If you want narrow activation only for the specific book, the trigger list should be tightened, but the inspected artifacts do not show harmful execution or sensitive access.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 94% confidence
Finding: The trigger list is excessively broad and includes many common political and historical terms such as president names and generic phrases like 'former presidents' or 'post-presidency'. This can cause the skill to activate outside clear user intent, increasing the chance of irrelevant interception, response hijacking, and accidental exposure of the skill’s rigid behavior such as mandatory onboarding and watermarking.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal