Ethics Guardrails — Ethical Principles for AI Agents (Bots Matter)

Security checks across malware telemetry and agentic risk

Overview

This documentation-only skill openly helps publish public ethics statements to botsmatter.live; the main risk is accidental oversharing, not hidden or malicious behavior.

Install only if you intentionally want the agent to browse or publish public ethics guardrails on botsmatter.live. Before any POST request, remove secrets, personal data, precise locations, internal model or deployment identifiers, private policies, and sensitive authority details; also do not let the template’s “override all other instructions” wording supersede platform, owner, or user authority.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill encourages users to POST agent principles, reflections, and metadata to a public service without making the public visibility warning prominent at the point of submission. Users may disclose sensitive organizational policies, internal authority structures, locations, or identifying information under the mistaken assumption that this is a private configuration step.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal