ClawHub
Back to skill

Security audit

塔勒布不确定性思维

Security checks across malware telemetry and agentic risk

Overview

This is a markdown-only educational skill about Taleb-style uncertainty and investing concepts, with no code or privileged behavior.

Use this skill as an educational guide to Taleb’s uncertainty and risk-thinking concepts. Do not treat its portfolio percentages or investment do/don’t lists as personalized financial advice; consider your own goals, liquidity needs, and risk tolerance, and consult a qualified financial professional before acting on investments.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill gives concrete portfolio-allocation guidance such as a barbell strategy with percentage splits and examples of speculative assets, but does not warn users that the material is educational only, may be unsuitable for their circumstances, and involves real financial risk. In an agent setting, users may treat the output as actionable advice, increasing the chance of harmful financial decisions or overexposure to high-risk products.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
This section presents practical 'do/don't' investment recommendations, including cash reserves, insurance, diversification behavior, and how to evaluate fund managers, without disclosing risk, uncertainty, or user suitability constraints. Because the skill is explicitly framed as practical application, the absence of warnings makes it more likely that users will rely on it as direct financial guidance rather than as abstract literary summary.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal