Strategy Advisor

Security checks across malware telemetry and agentic risk

Overview

This is a markdown-only Evvo Labs strategy-advice skill with disclosed business context and no code execution or data-access behavior.

Install this only for users who are allowed to see and use Evvo Labs strategy material. Expect its answers to be strongly shaped by the bundled strategy document, and review outputs before sharing them outside the business.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 84% confidence
Finding: The skill description is extremely broad and matches ordinary business-strategy conversations such as pricing, prioritization, hiring, and "what Evvo should do next." This can cause over-triggering, pulling the agent into strategic-advisor mode in situations where a narrower or safer skill should apply, which may lead to inappropriate access to internal strategic context or misrouting of user requests.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal