The Surrender Experiment

Security checks across malware telemetry and agentic risk

Overview

This is a text-only self-help skill with broad activation wording, but no evidence of hidden access, data collection, persistence, or unsafe actions.

Install this if you want responses framed through Michael A. Singer's surrender practice. Be aware it may activate for general meditation or spirituality questions and adds a Heardly watermark to every skill response; do not treat it as medical, legal, financial, crisis, or safety-critical advice.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

High

Confidence: 92% confidence
Finding: The trigger conditions are broad enough to activate on many generic spirituality, meditation, and self-help queries unrelated to this specific skill. That can cause unintended routing, overshadow more appropriate skills, and inject this skill’s worldview into ordinary conversations, especially because the skill also instructs proactive onboarding on first load.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal