Drama Writer

Security checks across malware telemetry and agentic risk

Overview

This is a writing-assistant skill made of Markdown guidance and templates; its main risk is legal caution around adapting uploaded novels, not malware-like behavior.

Use this skill for scripts and video prompts, but only provide novels or web-fiction you own, are licensed to adapt, or are allowed to use. The package itself does not show suspicious execution or data-access behavior.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill explicitly promotes direct adaptation of uploaded novel/web-fiction source text, but it provides no guardrails about copyright ownership, authorization, licensing, or fair-use limits. This creates a realistic risk that users will paste protected works and use the skill to generate derivative scripts, increasing the chance of copyright infringement and policy noncompliance.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal