Build Market Research Faq Page

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only FAQ-writing skill that uses chat and web search for market research content and does not show hidden access, persistence, or unsafe behavior.

Install only if you want a helper for market research FAQ drafting. Be explicit when invoking it, review factual claims before publishing, and avoid including confidential business data in prompts that may be used for web-search-assisted research.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The suggested prompt, "[Build Market Research FAQ Page] for my team," is overly generic and can be triggered during ordinary collaboration requests rather than an explicit intent to invoke the skill. Broad invocation phrases increase the chance of accidental activation, causing the system to use web_search or generate externally oriented content in contexts where the user did not intend that behavior.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal