CSO / Chief Strategy Officer

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only strategy skill with disclosed incident-response reference material and no executable behavior or hidden access requests.

Safe to install as an advisory business strategy skill. Treat security incident, ransomware, legal notification, credential reset, and containment guidance as reference material for authorized responders, not as permission for an agent to act on production systems without human approval.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Description-Behavior Mismatch

Medium

Confidence: 95% confidence
Finding: This file provides detailed security incident response guidance even though the skill is described as a strategy-focused CSO capability. That mismatch expands the skill's operational scope into sensitive security-response actions, which can mislead downstream systems into granting or invoking capabilities that were not intended or appropriately governed.

Context-Inappropriate Capability

Medium

Confidence: 96% confidence
Finding: Embedding concrete security incident handling procedures in a strategy planning skill introduces unjustified security-operational functionality. In practice, this can cause inappropriate reliance on the skill during real incidents, bypass role boundaries, and increase the chance that an agent with broad business access is used for high-risk security decisions without proper controls.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal