Slide Generation

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent slide-generation helper, with only a visible styling-related network dependency to be aware of.

Install if you are comfortable with the agent reading the Markdown files and images you point it at and writing a generated slide deck. For sensitive or offline use, vendor or remove the remote font/icon imports before rendering, and review generated slides before sharing.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Context-Inappropriate Capability

Medium

Confidence: 94% confidence
Finding: The theme imports third-party CSS from external CDNs (`bootcdn` and `fonts.bunny.net`) during slide rendering, which creates a network dependency in what should otherwise be a local presentation theme. This can leak usage metadata/IP information, enable tracking, break offline or reproducible builds, and expose consumers to supply-chain risk if the remote resource changes or is compromised.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal