Chinese Historical Advisory

Security checks across malware telemetry and agentic risk

Overview

This is a text-only advisory skill whose behavior is coherent with its stated purpose and does not request unusual access or persistence.

Installers should expect a structured advisory-writing skill that may use Chinese headings or output when the request is Chinese-facing. For legal, medical, financial, geopolitical, or other high-stakes decisions, treat its output as analytical support and verify current facts with qualified sources.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Natural-Language Policy Violations

Medium

Confidence: 86% confidence
Finding: The policy can cause the skill to answer in Chinese even when the user explicitly wrote in English, based solely on inferred audience. That creates a prompt-specification integrity issue: the skill may override the user’s immediate language choice, leading to unexpected output, reduced usability, and possible miscommunication in sensitive business or crisis contexts.

VirusTotal

59/59 vendors flagged this skill as clean.

View on VirusTotal