Campaign Management

Security checks across malware telemetry and agentic risk

Overview

The skill is not malware, but it enables autonomous campaign outreach and contact-data collection without enough approval, privacy, or stop controls.

Review carefully before installing. Use intelligence or draft-only workflows unless you add explicit approval gates, keep campaign folders private, define retention and deletion rules for lead data, and require confirmation before any email, LinkedIn, X, Reddit, or autonomous campaign action.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill explicitly supports outreach and autonomous modes that draft and send external messages, and it writes campaign artifacts such as outbox messages, reports, logs, and state files, but it does not clearly require explicit user confirmation, dry-run behavior, or prominent warnings about external side effects. In an agent setting, this can lead to unauthorized communications, spam, reputational harm, and unintended modification of campaign data on disk, especially because the skill is user-invocable and presented as an entry point for all campaign operations.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal