Health & Safety Risk Assessments (UK)

Security checks across malware telemetry and agentic risk

Overview

This appears to be a safety-document drafting skill, not a system-access or data-exfiltration risk, but users should treat its outputs as drafts requiring competent review.

Install only as a drafting aid. Do not rely on generated risk assessments for legal compliance or workplace safety until a competent health and safety professional adapts them to the specific site, hazards, controls, and current regulations.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The listing markets legally referenced risk assessments as ready for practical compliance use, but it does not state that outputs may be incomplete, context-dependent, or require review by a competent health and safety professional. In a safety-critical domain, users may rely on generated assessments to satisfy legal duties or operational controls, creating a real risk of unsafe work practices, regulatory noncompliance, injury, or fire/exposure incidents if important hazards or controls are omitted.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal