expert-mode

Security checks across malware telemetry and agentic risk

Overview

This skill manages an expert-mode catalog and can affect future responses, but its network updates and memory writes are disclosed and confirmation-gated.

Install if you want an expert-mode catalog that can change response style and, after confirmation, store expert entries in MEMORY.md. Review update previews carefully, keep auto-sync off unless needed, and prefer official GitHub sources over mirrors.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The trigger phrases and scenarios are broad enough that ordinary user requests about learning, syncing, updating, or activating experts could invoke this skill unintentionally. Because the skill can fetch external content and prepare updates to MEMORY.md, accidental activation increases the chance of unneeded network access, prompt-surface expansion, and user confusion even though some confirmation gates exist.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal