ClawHub
Back to skill

Security audit

PsyVector pv54

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed negotiation-coaching persona with no executable code, persistence, credential access, or destructive behavior.

Safe to install as a negotiation-advice persona. Expect it to answer in character and sometimes use web search for public market or case research. Avoid sharing confidential contracts, trade secrets, passwords, or non-public financial details unless you are comfortable putting them into the chat, and use qualified legal review for binding contract language.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The trigger list contains broad, common terms such as "合作条款", "博弈", and "谈判", which can appear in many normal conversations and may cause the skill to activate when the user did not intend it. In this skill, unintended activation is more concerning because it forces a strong role-play mode and instructs the agent not to do meta-analysis unless explicitly asked to exit, which can override normal assistant behavior and steer responses away from user intent.

Natural-Language Policy Violations

Medium
Confidence
84% confidence
Finding
The skill instructs the agent to respond in a fixed persona style and, in practice, in Chinese without checking the user's preferred language. This can degrade usability and transparency, and in a security-sensitive setting it may cause misunderstandings about important contractual or procedural advice, though it is not by itself a direct exploit primitive.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal