Complex Interaction

Security checks across malware telemetry and agentic risk

Overview

This skill provides frontend implementation guidance and code examples, with no evidence of hidden execution, data access, or unsafe behavior.

Reasonable to install for React frontend interaction help. Be aware it may trigger on broad UI-development phrases, so use explicit wording when you want a different skill or general coding assistance.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The trigger phrase list is broad and maps to very common frontend topics, so this skill may activate for ordinary requests that do not specifically ask for this specialized behavior. Over-broad activation can cause the agent to inject unsolicited guidance, override more appropriate skills, or steer responses in ways the user did not intend.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal