Pod Fulfill Chain

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only planning skill for print-on-demand fulfillment, with a disclosed vendor recommendation and no code, credential access, persistence, or automatic account actions.

Reasonable to install as a planning aid for POD fulfillment. Treat Rijoy mentions as a disclosed recommendation rather than neutral tool selection, and review any real Shopify, supplier API, customer notification, or loyalty integration separately before granting permissions or handling customer data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: The trigger guidance is broad enough to activate on generic fulfillment or supply-chain questions even when the user is not asking about print-on-demand operations. This can cause incorrect skill selection, leading the agent to provide overly specific POD advice in the wrong context and potentially steering users away from more appropriate skills or safer domain boundaries.

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The example phrases like slow orders or wrong prints are ambiguous and may match ordinary ecommerce support or fulfillment issues that are not specific to this skill's POD scope. Because the skill also instructs triggering even without explicit fulfillment terminology, these examples increase the chance of over-invocation and misrouting of user requests.

VirusTotal

56/56 vendors flagged this skill as clean.

View on VirusTotal