Baoyu Slide Deck

Security checks across malware telemetry and agentic risk

Overview

This skill is a slide-deck generator whose file creation, image generation, and export steps are disclosed and aligned with that purpose.

Before installing, be aware that this skill can create and rename files under slide-deck output folders and may call an image-generation workflow. Use outline or prompt review for important decks, and verify the referenced merge scripts/runtime source before relying on PPTX or PDF export.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The manifest description includes very broad trigger phrases like 'create slides', 'make a presentation', and 'PPT', which can match ordinary user requests and cause this skill to activate in situations the user did not explicitly intend. Overbroad invocation increases the chance of unnecessary file creation, prompt generation, and downstream execution of local scripts or image-generation workflows.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal