Paper to Tools - Match Research Methods to AI Agents

Security checks across malware telemetry and agentic risk

Overview

This skill is an instruction-only research helper that recommends science-agent tools from pasted paper methods, with no executable code or privileged behavior.

Review any recommended third-party agent before installing it, since those tools may have their own permissions and data-handling risks. Avoid pasting sensitive patient, proprietary, or unpublished research details unless your agent environment is approved for that data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 93% confidence
Finding: The trigger phrases are broad and overlap with ordinary research-assistance requests such as 'reproduce this paper' or 'what tools for this method.' This can cause the skill to activate unexpectedly in unrelated conversations, steering users toward external tools and links without explicit intent to invoke this specific skill.

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal