Novel Writer

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Chinese web-novel writing helper that stores and edits novel project files in a scoped novels folder.

Install this if you want a Chinese web-novel workflow that maintains persistent project files. Keep novel projects under the intended novels/<book name>/ folder, review major outline or rewrite confirmations carefully, and avoid invoking it for unrelated writing tasks where its file-backed workflow would be unnecessary.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: The activation description is very broad: it triggers on common writing tasks like outlining, rewriting, continuation, and editing without strong gating criteria. In an agent ecosystem, this can cause the skill to be selected in unintended contexts, increasing the chance it performs file reads/writes or content transformations on the wrong user task or wrong project data.

Natural-Language Policy Violations

Medium

Confidence: 79% confidence
Finding: The skill description is Chinese-only and does not indicate user language negotiation or a justified locale restriction. This can lead to mis-execution, user confusion, or unsafe handling of instructions when invoked for users working in other languages, especially because the skill also manages persistent files and strict workflow state.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal