plan-immigration-law-firm-local-seo-faq-cluster

Security checks across malware telemetry and agentic risk

Overview

This is a simple content-drafting skill for immigration law firm SEO, with no executable code or hidden privileged behavior found.

Before installing, verify the publisher/source links and treat this as a marketing drafting aid, not legal advice. Do not provide confidential client or case-specific information, and have a qualified human review any FAQ content before publication.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The suggested invocation phrase, '[Plan Immigration Law Firm Local SEO FAQ Cluster] for my immigration law firm', is broad and can trigger the skill without requiring user scope, jurisdiction, content boundaries, or confirmation that legal output is only marketing copy. In a legal-domain skill that uses web_search and chat, this increases the chance of overbroad activation and generation of legal-adjacent content without sufficient constraints, which could lead to misleading or unsafe output.

VirusTotal

No VirusTotal findings

View on VirusTotal