Back to skill

Security audit

Successful Trader

Security checks across malware telemetry and agentic risk

Overview

This is a trading-education skill with broad financial guidance, but it contains only instructional text and does not request account access, credentials, code execution, or automation.

Install this only if you want an agent to help with trading education, planning, journaling, and risk-management discussion. Do not treat its output as personalized financial advice or a guarantee of profit, and do not connect any agent to broker accounts or allow trade execution without separate, explicit controls.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The skill description is broad enough that an agent may invoke it for many general finance or trading-related conversations, not just narrow educational requests. Over-broad activation can cause the agent to provide speculative trading guidance in inappropriate contexts, increasing the risk of unsuitable financial content, regulatory issues, or advice beyond user intent.

Vague Triggers

Medium
Confidence
94% confidence
Finding
The "When to Use This Skill" section enumerates many high-level trading tasks without boundaries, which increases the chance of automatic activation for broad market, investing, or portfolio discussions. In this context, that can steer the agent toward generating operational trading recommendations or bot-building assistance when safer, more constrained educational responses would be appropriate.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.