Security audit

Game Dev art-bible

Security checks across malware telemetry and agentic risk

Overview

This is a plain game art-bible template that guides document creation and does not request sensitive access or hidden execution.

Safe to install for game art direction work. Be aware it may trigger on generic style-guide or visual-identity requests, so invoke it explicitly for game art bible tasks when precision matters.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 95% confidence
Finding: The trigger phrase "style guide" is very broad and can match many unrelated user requests, causing this skill to activate outside its intended game-art scope. In an agent system, overbroad activation can misroute conversations, override a more appropriate skill, or inject irrelevant instructions into general documentation workflows.

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The trigger phrase "visual identity" is ambiguous and commonly used in branding, marketing, and corporate design contexts beyond games. This can cause unintended activation for non-game requests, leading to incorrect skill selection and leakage of domain-specific guidance into unrelated tasks.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal