Vibe Design

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only design guide that does not install code, request credentials, or automate actions.

This appears safe to install as a design-reference skill. When using the external AI or design services it recommends, review those services' privacy terms and avoid uploading confidential assets unless you are comfortable with their handling of that data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Low

Confidence: 88% confidence
Finding: This markdown file describes the skill broadly as creating visual designs with AI tools, but it does not specify how or when the skill should be invoked, nor does it provide bounded trigger phrases or exclusion conditions. In a skill catalog context, that broad description could overlap with many ordinary design-related requests and lead to unintended activation.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal