知识卡片提示词生成器

Security checks across malware telemetry and agentic risk

Overview

This is a markdown-only skill that turns user text into formatted visual-note image prompts, with strict Chinese formatting and branding rules but no code execution or sensitive access.

Reasonable to install if you want Chinese visual-note image prompts in this fixed format. Before using it, be aware that it will add the creator attribution "By 八点虾" and may override language or formatting preferences; verify the GitHub repository separately if installing via the README clone command instead of this packaged artifact.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Natural-Language Policy Violations

Medium

Confidence: 92% confidence
Finding: The skill hard-codes Chinese-language output and specific script/style requirements across the entire format guide without indicating any user-choice or localization fallback. This can override user preferences, reduce accessibility, and cause unsafe or misleading behavior in multilingual workflows where preserving the user's original language is important.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal