Back to skill

Security audit

Apidot Omni Flash Api

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only APIDot Omni Flash helper with no executable code, no install automation, and only an optional API key reference for user-directed integrations.

Before installing, know that this skill is meant specifically for APIDot Omni Flash work. If it appears for a generic video-editing request, confirm you actually want APIDot Omni Flash guidance before using it, and keep any APIDOT_API_KEY or private media details server-side.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Vague Triggers

Medium
Confidence
87% confidence
Finding
The search-term trigger list is broad and includes generic phrases such as 'video editing', 'video revision', and '4K video generation', which could cause this skill to be invoked for requests outside the intended APIDot Omni Flash scope. While the skill is documentation-only and contains no executable code, over-broad invocation can misroute users, increase exposure of sensitive context to an unnecessary skill, and create opportunities for prompt-scope confusion.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.