职场高情商沟通润色/职场防背锅助手

Security checks across malware telemetry and agentic risk

Overview

This is a text-only Chinese workplace message polishing skill with no code, install steps, credentials, persistence, or external access.

Before using a generated workplace message, review the facts, tone, recipient context, and responsibility boundaries. Non-Chinese users may need to ask for translation or language adaptation because the skill’s template is written for Chinese output.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Natural-Language Policy Violations

Medium

Confidence: 94% confidence
Finding: The skill hard-codes Chinese-only behavior and output formatting without offering a user language choice or documenting a necessary locale restriction. This can exclude users, cause misunderstanding when the user's environment or downstream tooling expects another language, and may lead to unsafe communication errors if the user relies on precise wording in multilingual workplace contexts.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal