Back to skill

Security audit

Task Prism

Security checks across malware telemetry and agentic risk

Overview

This is a Markdown-only project planning skill with no hidden code or system access; its main caveats are broad activation and Chinese-first instructions.

Install if you want a Chinese-language project planning and task decomposition assistant. Be aware it may activate on broad planning requests and may default to Chinese unless you explicitly ask for another language.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Vague Triggers

High
Confidence
97% confidence
Finding
The skill’s trigger scope is excessively broad and explicitly claims activation for generic phrases like '帮我拆解任务', '做个项目计划', and '任务怎么分工'. This can cause the skill to hijack ordinary conversations that only loosely relate to project planning, leading to incorrect routing, unnecessary instruction injection, and reduced reliability of downstream agent behavior.

Natural-Language Policy Violations

Medium
Confidence
76% confidence
Finding
The skill content is entirely written in Chinese and its description strongly implies Chinese-first operation without stating that output language should follow the user’s preference. In a multi-skill environment, this can degrade usability, cause language-mismatch responses, and unexpectedly override user expectations or system language behavior.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.