Back to skill

Security audit

Product Launch

Security checks across malware telemetry and agentic risk

Overview

This is a product-launch planning guide, not a tool that runs code or accesses accounts.

Safe to install as a planning reference. If you use it with tools that can email customers, post publicly, or schedule social media, approve the exact copy, audience, platform, and timing before anything is sent or published.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The trigger list includes generic phrases like "how to launch" and "launch plan," which are broad enough to activate this skill for loosely related requests. Overbroad activation can cause the agent to invoke this skill in unintended contexts, leading to irrelevant guidance, prompt-routing errors, or overshadowing more appropriate skills.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.