韩非子智慧

Security checks across malware telemetry and agentic risk

Overview

This is a Chinese-language methodology skill about Han Feizi-style legalist leadership ideas, with no executable code, install hooks, credentials, network behavior, or hidden automation.

Install only if you are comfortable using Chinese-language leadership and organizational-control guidance. Treat the power, discipline, and testing-of-subordinates advice as historical or strategic framing, and apply it with modern legal, ethical, and workplace safeguards.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Natural-Language Policy Violations

Medium

Confidence: 96% confidence
Finding: The skill is written entirely in Chinese and does not offer any language selection, fallback, or opt-in behavior. This can exclude users who cannot read Chinese, increase the risk of misunderstanding operational guidance, and make the skill less safe and usable in multilingual environments.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal