Build Med Spa Studio Service Comparison Landing Page

Security checks across malware telemetry and agentic risk

Overview

This is a prompt-only marketing skill for med spa landing pages, with no code, installs, credentials, persistence, or hidden data access.

Before publishing generated content, review it for medical, advertising, pricing, and compliance accuracy. Do not use it for clinical advice, patient-specific recommendations, or unverified medical claims.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 86% confidence
Finding: The skill’s trigger language is generic enough that an agent may invoke it outside a narrowly defined med-spa offer-positioning context, increasing the chance of inappropriate use or accidental overreach. In a healthcare-adjacent setting, vague activation boundaries can lead to generation of patient-facing marketing or quasi-medical content without sufficient guardrails or review.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal