Canghai Ziliu Perspective V1.0.0

Security checks across malware telemetry and agentic risk

Overview

This is a text-only investment perspective/persona skill with transparency cautions but no executable behavior or data access.

Install only if you want a roleplayed investment-thinking lens. Do not treat the persona as the real person or as financial advice, and consider asking the assistant to restate that it is simulating the perspective when discussing specific stocks or trades.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 95% confidence
Finding: The activation phrases are broad enough to match ordinary conversational requests such as 'switch to Canghai' or 'think from Canghai's angle,' which can unintentionally trigger the skill without clear user consent. This creates prompt-routing risk: users may receive persona-constrained investment guidance when they intended a normal assistant response, increasing the chance of misleading or inappropriate outputs in a sensitive financial domain.

Natural-Language Policy Violations

Low

Confidence: 83% confidence
Finding: The skill instructs the assistant to respond directly as a real person in first person and to remain in character unless explicitly told to exit. That can blur the distinction between simulation and authentic identity, reducing transparency and making users more likely to over-trust the advice, especially because the topic is investing and the persona is presented as experienced and authoritative.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal