Flue - Control Desktop Software

Security checks across malware telemetry and agentic risk

Overview

Flue is a disclosed desktop-app automation helper; its main risk is that it can control live creative, 3D, and Office applications if the user allows it.

Install only if you want an agent to automate supported desktop applications. Before use, confirm the target app, file or project, and whether the action is read-only or allowed to edit; work on copies for important files and approve installation/setup explicitly.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The skill invites use for a very broad set of desktop-application tasks and emphasizes that it can operate inside many powerful applications, but it does not define clear activation boundaries or strong preconditions beyond general copilot language. In practice, this can cause an agent to invoke the skill for vague requests and perform unintended actions in live documents, scenes, or Office files, increasing the chance of unsafe modifications or overreach.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill clearly states that it can execute code inside application scripting runtimes and make bounded edits, but the description does not prominently warn that this can alter live documents, scenes, spreadsheets, and presentations. That omission can mislead users or upstream agents about the operational risk, making unintended modification of valuable work products more likely.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal