Paper Ingest Normalizer

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed paper-normalization helper with project-memory record preparation, and it does not include hidden code, credential use, or automatic writeback behavior.

Install this if you want paper and literature inputs normalized into project-memory-ready records. Review the extracted bibliographic fields, summaries, uncertain_fields, and writeback_payload before allowing any actual memory writeback, especially when the request was only to read or summarize a paper.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 86% confidence
Finding: The trigger phrases are broad enough that normal user requests like 'read this paper' or 'normalize this literature' could invoke the skill in situations where the user did not explicitly intend project-memory normalization or writeback preparation. In this skill, that raises the chance of unintended processing of URLs/PDFs and premature preparation of writeback payloads, especially because the skill is designed to handle external content and downstream memory ingestion.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal