Poe UMGo Modular Speech

Security checks across malware telemetry and agentic risk

Overview

This is a presentation-only formatting skill with no code execution or data access; the main caveat is that it may apply its style to broad formatting requests.

Install this if you want a structured chat formatting style. Prefer explicit invocation with `/skill poe-umg` or `/poe-umg`, and tell the agent to stop or return to normal if the formatting style carries into replies where you do not want it.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 95% confidence
Finding: The activation cues include generic everyday phrases such as 'format this', 'clean this up', and 'organize this', which can cause the style skill to trigger when the user did not clearly intend to invoke it. Because this skill changes presentation rather than performing privileged actions, the main risk is accidental formatting override, response confusion, and persistence of an unintended style across later turns rather than direct security compromise.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal