Existing Platform Leverage

Security checks across malware telemetry and agentic risk

Overview

This skill is a startup strategy-writing guide that creates local planning documents, with no executable code or hidden data access.

Install only if you want startup platform-distribution strategy help. Expect it to write local Markdown planning files, and review any recommended tactics against platform rules, privacy expectations, and ethical constraints before acting on them.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 84% confidence
Finding: The manifest description contains many broad activation phrases such as 'existing platforms', 'distribution platform', and common channel terms that can cause the skill to trigger in unrelated conversations. Over-broad auto-activation is a real security and safety issue because it can insert growth advice centered on 'parasitic' platform leverage into contexts where it was not explicitly requested, increasing the chance of inappropriate or policy-risky recommendations.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal