Back to skill

Security audit

Ayurvedic Constitution Guide

Security checks across malware telemetry and agentic risk

Overview

This is a text-only Ayurvedic wellness reflection guide with disclosed medical safety limits and no executable or persistence behavior.

Install only if you want informal wellness guidance through an Ayurvedic framework. Do not rely on it for diagnosis, treatment, medication decisions, pregnancy or pediatric nutrition, chronic disease management, eating disorder recovery, allergies, or urgent symptoms; use a qualified clinician for those cases.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
93% confidence
Finding
The default prompt includes the phrase "help me," which overlaps with common everyday speech and does not clearly constrain when this skill should activate versus when general assistance is intended. The manifest also provides no negative examples or narrower trigger conditions to reduce accidental invocation.

Missing User Warnings

Medium
Confidence
81% confidence
Finding
This markdown file gives nutrition and lifestyle recommendations tied to symptoms and constitution patterns. Although it says the screen is informal and non-diagnostic, it does not clearly warn users within the recommendation sections that the suggestions are not medical advice and that persistent, severe, or concerning symptoms should be evaluated by a qualified clinician.

VirusTotal

58/58 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.