Back to skill

Security audit

chinese-seo-compliance

Security checks across malware telemetry and agentic risk

Overview

This is a markdown-only skill that clearly tells the agent to send Chinese marketing content to a compliance-checking API, with no local persistence or privileged behavior found.

Install only if you are comfortable sending the content you scan to the listed external API service. Avoid submitting confidential drafts, customer data, legal strategy, or unreleased business material unless you trust the API operator and have checked their privacy and retention practices.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

2/65 vendors flagged this skill as malicious, and 63/65 flagged it as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.