integrated-marketing

Security checks across malware telemetry and agentic risk

Overview

This is a markdown-only integrated marketing guidance skill; its routing is broad and its catalog tags look overstated, but it does not include code, credential access, persistence, or hidden actions.

Safe to install as a low-risk marketing reference skill. Be aware that it may be invoked for broad marketing prompts and that its catalog capability tags appear overstated; do not treat it as a crypto or purchasing tool.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The skill description contains very broad trigger phrases such as generic marketing terms and multiple aliases, which can cause the agent to invoke this skill in situations where a more specific skill would be more appropriate. This is not inherently malicious, but over-broad routing can degrade security and reliability by increasing the chance that the wrong instructions or tools are applied to a user request.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal