Back to skill

Security audit

问句需求调研

Security checks across malware telemetry and agentic risk

Overview

This skill is a Chinese-language document-processing template that reads user-provided BI requirement/reference files and fills analysis results back into the workbook, with no code execution or hidden network behavior found.

Install if you want a Chinese-language workflow for BI requirement-question cleanup. Be aware it may read the uploaded business glossary, data dictionary, and table-structure documents in full and write results into the provided spreadsheet.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Natural-Language Policy Violations

Medium
Confidence
95% confidence
Finding
The natural-language content of the skill, including its name, description, and operating instructions, is entirely Chinese and does not indicate that users may choose another language. Under the policy, forcing a specific language without user opt-in is a locale/language policy violation unless the restriction is explicitly justified.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.