Chemistry

Security checks across malware telemetry and agentic risk

Overview

This is a chemistry tutoring skill with safety reminders and no code or hidden access, though users should still be careful with real-world experiments.

Safe to install from an agent-security perspective. Before attempting any chemistry procedure, users should apply real-world safety practices: use only clearly identified low-risk household materials, avoid mixing cleaners or unknown substances, supervise minors, use ventilation and eye protection when appropriate, and seek qualified guidance for heat, pressure, fumes, concentrated chemicals, regulated substances, or research-level procedures.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly encourages home experiments like pH indicators and baking soda volcanoes, but it does not provide a clear, explicit warning that household experimentation still carries risks such as splashing, inhalation, contamination, or dangerous chemical mixing. In a chemistry skill, users may over-trust suggested activities, so omission of concrete home-safety guardrails increases the chance of accidental harm.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal