Accessible Game Development

Security checks across malware telemetry and agentic risk

Overview

This skill is a Markdown-only guide for building screen-reader-friendly HTML games and does not ask for sensitive access or run code.

Safe to install for accessible HTML game development. Review generated game code before publishing it, and verify licensing if you ask an agent to fetch third-party audio or image assets.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The trigger keyword example includes a broad phrase like "accessible game," which can match general accessibility-related requests outside the narrowly defined skill scope. This can cause unintended auto-activation, leading the agent to apply this skill in irrelevant contexts and potentially override more appropriate instructions or user intent.

Natural-Language Policy Violations

Medium

Confidence: 84% confidence
Finding: The skill content is written to operate in Chinese without offering language selection or clearly stating that the scope is limited to Chinese-speaking users. This can create unsafe or incorrect guidance when invoked for users in other languages, increasing the chance of misunderstanding requirements, accessibility terminology, or implementation details.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal