Security audit

Adoption Suppression

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only skill for analyzing adoption friction, with no code execution or hidden access, though its broad triggers and adversarial wording deserve user awareness.

Install only if you want an adversarial review of product, onboarding, governance, or community adoption flows. Because the triggers are broad, consider invoking it deliberately and avoid providing sensitive user logs or confidential business data unless that data is intended for the analysis.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The trigger list uses broad, generic phrases such as 'funnel analysis', 'identify dropoff', and 'suppress growth' that can match ordinary analytical requests without clear boundaries on acceptable use. In a skill explicitly framed around suppressing adoption and increasing friction, these triggers can cause the agent to activate in contexts where it provides guidance for undermining growth, trust, or participation rather than defensive analysis.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.