Meeting Assistant

Security checks across malware telemetry and agentic risk

Overview

This is a coherent instruction-only meeting assistant skill, but using it can send and store sensitive meeting audio and transcripts with SenseAudio.

Install or use this only if you trust SenseAudio for your meeting data. Store the API key securely, confirm participant and organizational consent before sending audio or transcripts, and define how raw recordings, transcripts, logs, historical records, and archives are retained and deleted.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (11)

Vague Triggers

Medium

Confidence: 87% confidence
Finding: The default prompt uses a very broad natural-language invocation phrase that can match ordinary user requests without clear boundaries for when the skill should activate. In combination with assistant routing, this can cause unintended invocation, exposing meeting-related capabilities or context handling when the user did not explicitly intend to use this skill.

Vague Triggers

Medium

Confidence: 94% confidence
Finding: Enabling implicit invocation without trigger constraints or negative examples increases the chance that the platform will route unrelated meeting, transcription, translation, or note-taking requests into this skill automatically. Because this skill handles potentially sensitive meeting content, accidental activation can expand data exposure and cause unauthorized processing of transcripts or summaries.

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The example sends live meeting audio and later processes the resulting transcript through a remote service, but it does not warn that potentially sensitive meeting content leaves the local environment. In a meeting-assistant context, users may handle confidential business, HR, or legal discussions, so omission of a privacy and data-transfer notice can lead to unsafe deployment and uninformed consent.

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The recommended workflow explicitly says to save raw meeting audio, but it does not mention retention limits, access controls, encryption, or the sensitivity of stored recordings. Raw meeting audio often contains the highest-fidelity copy of sensitive conversations, so encouraging storage without safeguards increases the risk of data exposure or over-retention.

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: The document instructs users to upload meeting recordings to an external API but provides no warning about data leaving the local environment, no privacy notice, and no guidance on consent or sensitive-content handling. Meeting audio commonly contains PII, confidential business discussions, and regulated data, so omission of disclosure and safeguards creates a real privacy and compliance risk.

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The workflow instructs implementers to stream live meeting audio to a third-party WebSocket endpoint, which inherently transfers potentially sensitive voice and transcript data off-system. In a meeting-assistant context this can include confidential business discussions or personal data, and the document does not mention consent, notice, data handling, or privacy controls, increasing the risk of unsafe deployment.

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The document recommends buffering finalized transcript segments for summarization and storing session identifiers in logs for troubleshooting, but provides no retention, access-control, or redaction guidance. Meeting transcripts and correlation identifiers can expose sensitive content and make later data leakage or insider misuse more damaging.

External Transmission

Medium

Category: Data Exfiltration
Content: If recognition quality is poor, analyze the file first. ```bash curl -X POST https://api.senseaudio.cn/v1/audio/analysis \ -H "Authorization: Bearer $SENSEAUDIO_API_KEY" \ -F "model=sense-asr-check" \ -F "file=@meeting.wav"
Confidence: 84% confidence
Finding: https://api.senseaudio.cn/

External Transmission

Medium

Category: Data Exfiltration
Content: ## 5. 查询历史会议转写记录 / Query historical meeting transcripts ```bash curl --location --request GET "https://api.senseaudio.cn/v1/audio/records?page=1&page_size=20&session_id=<SESSION_ID>" \ -H "Authorization: Bearer $SENSEAUDIO_API_KEY" ```
Confidence: 75% confidence
Finding: https://api.senseaudio.cn/

External Transmission

Medium

Category: Data Exfiltration
Content: # 离线会议转写 / Offline Meeting Transcription 当用户提供会议录音或会后文件时，使用 `POST https://api.senseaudio.cn/v1/audio/transcriptions`。 Use `POST https://api.senseaudio.cn/v1/audio/transcriptions` for uploaded meeting recordings. ## 适用场景 / Best Fit
Confidence: 90% confidence
Finding: https://api.senseaudio.cn/

External Transmission

Medium

Category: Data Exfiltration
Content: # 离线会议转写 / Offline Meeting Transcription 当用户提供会议录音或会后文件时，使用 `POST https://api.senseaudio.cn/v1/audio/transcriptions`。 Use `POST https://api.senseaudio.cn/v1/audio/transcriptions` for uploaded meeting recordings. ## 适用场景 / Best Fit
Confidence: 90% confidence
Finding: https://api.senseaudio.cn/

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal