Morfeo Remotion Style

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward Remotion style guide for Morfeo Academy videos, with no evidence of hidden data access, persistence, or harmful behavior.

Install this if you want Morfeo Academy styling applied to Remotion video work. Be aware that the trigger may apply broadly to Paul-related Remotion requests, and pin npm/template versions if reproducible builds matter.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 86% confidence
Finding: The trigger description includes broad language such as 'any Remotion video request from Paul,' which can cause the skill to activate in situations beyond the narrowly intended Morfeo Academy styling use case. Over-broad invocation can lead to prompt/skill hijacking at the routing layer, causing this style guide to be applied unexpectedly and potentially interfering with other skills or user intents.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal