Parfait Charts

Security checks across malware telemetry and agentic risk

Overview

This is a simple chart-analysis skill with no executable code, persistence, credential access, or external data access.

Safe to install for generating stacked bar or composition chart analysis. Be aware it may activate on general words like composition or structure, so confirm the response is relevant when your request is not specifically about charting.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: The trigger list includes generic terms such as "composition" and "structure," which are common in many unrelated user requests. This can cause unintended invocation of the skill, leading to incorrect routing, confusing outputs, and increased exposure of the skill in contexts where it was not intended to run.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal