Apollo Mode

Security checks across malware telemetry and agentic risk

Overview

The only substantiated issue is a language/trigger mismatch, not evidence of harmful behavior.

Review the skill text before installing to make sure its supported languages and trigger phrases match how you expect to invoke it. The current evidence does not show harmful behavior.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Natural-Language Policy Violations

Medium

Confidence: 95% confidence
Finding: The skill description is written only in Chinese, while the command triggers are split across Russian and English only. This creates a language/locale constraint without offering the user a choice or documenting a justified region-specific scope, which violates the language/locale policy for natural-language content.

VirusTotal

54/54 vendors flagged this skill as clean.

View on VirusTotal