shapefile

Security checks across malware telemetry and agentic risk

Overview

This is a focused Shapefile helper that provides guidance only and does not include executable code, credential use, persistence, or hidden data access.

Reasonable to install for Shapefile troubleshooting. Before any conversion, repair, reprojection, or batch cleanup, confirm the complete sidecar file set, CRS assumptions, encoding, and output path, and keep an untouched copy of the original dataset.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: The default prompt and description allow broad invocation for many shapefile-related topics without clear boundaries on when the skill should activate. This can cause over-triggering in unrelated GIS, file-format, or data-cleaning conversations, increasing the chance the agent applies this skill inappropriately and produces misleading guidance or unnecessary file-handling actions.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal