The Sovereign Individual

Security checks across malware telemetry and agentic risk

Overview

This is a content-only book companion skill with some overbroad activation wording but no executable code, credential access, persistence, or hidden data handling.

Install only if you want responses framed through The Sovereign Individual. Expect a strong anti-state/libertarian perspective, crypto and taxation themes, and a Heardly watermark in skill outputs; treat any financial, legal, tax, or personal-security suggestions as book-based commentary rather than professional advice.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

High

Confidence: 94% confidence
Finding: The trigger rules are extremely broad and include generic terms like 'future', 'individual', 'security', 'network', 'Internet', and even 'doesn't know how to start', which can cause the skill to activate during many unrelated conversations. This creates an overreach/prompt-hijacking risk where the assistant may unexpectedly switch into this skill's framing and instructions, reducing relevance and potentially overriding safer or more appropriate behaviors in other contexts.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal