Commitment And Advance Planner
Security checks across malware telemetry and agentic risk
Overview
This is an instruction-only sales planning skill that reads deal notes and writes a pre-call plan; I found no hidden execution, credential use, or unsafe data handling.
Before installing, treat deal briefs, stakeholder maps, and call notes as potentially sensitive customer/business data. Keep only the necessary context in the working directory, review the generated commitment plan before sharing it, and do not treat the skill as authorization to update CRM stages or make business commitments automatically.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
VirusTotal findings are pending for this skill version.