Back to skill

Security audit

Banshee's Last Cry Game CN

Security checks across malware telemetry and agentic risk

Overview

This is a Chinese-language interactive horror game that stores local gameplay progress, with no evidence of hidden access, exfiltration, code execution, or unsafe persistence.

Install this only if you want a Chinese-language horror/mystery text adventure. It may create or update a local game_state.json file with gameplay choices and progress, so avoid entering real personal information as player notes or names.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Natural-Language Policy Violations

Medium
Confidence
94% confidence
Finding
The skill content is entirely in Chinese and explicitly instructs Chinese-language interaction without offering any language choice or documenting a locale requirement. This can exclude users, cause misunderstanding of game instructions, and create unsafe or degraded user experience if a user cannot understand critical prompts or consent to the interaction format.

Natural-Language Policy Violations

Medium
Confidence
96% confidence
Finding
The skill content is entirely written in Chinese and strongly directs the interaction style without any indication that the user opted into that locale. This can override a user's expected language preference, reduce usability, and create confusion in multilingual deployments, though it does not appear to be an overtly malicious attempt to manipulate the model.

Natural-Language Policy Violations

Medium
Confidence
91% confidence
Finding
The skill metadata and content are entirely in Chinese and the instructions direct the model to continue the interaction in that language, without indicating any fallback or user language negotiation. This can reduce usability, informed consent, and accessibility for users who do not understand Chinese, causing them to miss important story or safety-relevant prompts.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.