iFinD投研-公司公告信息搜索
Security checks across malware telemetry and agentic risk
Overview
This skill coherently searches company announcements through the disclosed iFinD/RePilot API, with the main caution being local storage and use of a provider token.
Install only if you are comfortable using an iFinD/RePilot token with this skill. Treat the token as sensitive, avoid putting unrelated private information into search queries, and rotate the token if the local config file or chat transcript containing it may have been exposed.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.