小红书标题生成器

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only Xiaohongshu title generator with no code execution, credential access, persistence, or hidden data handling.

This appears safe to install for generating Xiaohongshu-style titles. Be aware that it may activate on generic title-generation prompts, and avoid entering private or sensitive personal details into marketing-title inputs.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 87% confidence
Finding: The activation triggers include broad generic phrases such as "生成标题" and "title generator," which can match many ordinary writing requests outside the narrowly intended Xiaohongshu use case. This can cause the skill to activate unexpectedly, leading to prompt hijacking of unrelated tasks, user confusion, or undesired content shaping even though the skill itself does not contain direct code-execution behavior.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal