V.A.R. Protocol

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed backup, versioning, and rollback workflow guide; its main issue is broad activation wording, not hidden or unsafe behavior.

Install this if you want agents to be more disciplined about backups, version names, changelogs, and rollback points during important edits. Expect it to influence ordinary editing workflows unless you narrow when it activates; there is no artifact-backed evidence of hidden execution, exfiltration, or unsafe persistence.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The manifest description and trigger list are very broad, covering many common editing, refactoring, migration, and collaboration tasks. In an agent-routing system, this can cause the skill to activate in situations where it is not specifically needed, increasing prompt-surface area and the chance that its instructions override or interfere with more appropriate task-specific safeguards or workflows.

Vague Triggers

Low

Confidence: 75% confidence
Finding: The instruction to apply V.A.R. 'whenever the cost of overwriting the wrong thing is higher than the cost of being slightly more disciplined' is subjective and left to model interpretation. That ambiguity can lead to inconsistent activation and over-application, especially on ordinary edits, causing unnecessary workflow changes or conflicts with user intent and other skills.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal