Cn To En Listing Writer

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only writing skill for turning pasted Chinese or English product details into Amazon listing drafts.

Install this if you want Amazon listing drafts from pasted product information. Avoid pasting confidential supplier or business data unless you are comfortable sharing it with your agent, and manually verify generated claims about certifications, warranties, safety, measurements, and Amazon policy compliance before publishing.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The trigger list includes broad ecommerce phrases such as cross-border seller, listing translation, and related generic terms that can cause the skill to activate outside the user's specific intent. This creates an invocation-scope problem: unrelated user content may be routed into this skill, producing unintended rewriting of product content or leaking business text into the wrong workflow.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal