Skool

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only Skool operations skill with disclosed local notes and explicit safeguards for member-facing actions.

Install only if you want help operating a Skool community. Keep it advisory unless you explicitly approve invites, removals, access changes, AutoDM, Zapier, webhook, or billing-adjacent work. If you enable ~/skool/ memory, store only group-level operating rules and avoid credentials, payment details, raw messages, or member dossiers.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The setup instructions define activation triggers very broadly across Skool, classroom, approvals, calendar events, automation, and member lifecycle work, which can cause the skill to activate in situations the user did not clearly intend. In a workflow involving access control, onboarding, and member-facing operations, unintended invocation increases the chance of unsafe advice or premature operational actions being surfaced in sensitive contexts.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal