Competitive Analysis

Security checks across malware telemetry and agentic risk

Overview

This skill is a transparent competitive-research checklist that uses public sources and does not install code, request credentials, or persist in the environment.

Reasonable to install for structured competitive analysis. Use it when you want a deep competitor review, and be aware it may activate on broad competitor-related questions. Keep research to lawful public sources and avoid adding confidential business, customer, or account information unless you intend it to be used in the analysis.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The trigger list includes broad, common-language phrases such as "who are my competitors" and "competitive landscape," which can match many ordinary business queries and cause the skill to activate when the user did not intend a deep competitor-dissection workflow. This increases the chance of incorrect routing, unnecessary data collection, and delivery of more aggressive competitive guidance than the user requested.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal