womens-day-support

Security checks across malware telemetry and agentic risk

Overview

This skill provides static International Women's Day resource text and does not show hidden system access, data collection, persistence, or destructive behavior.

Before installing, treat the listed hotlines and resource links as static suggestions rather than verified emergency guidance, and be aware the broad trigger may activate for some general women-support queries. The artifacts do not show hidden access, storage, or system modification behavior.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Natural-Language Policy Violations

Medium

Confidence: 88% confidence
Finding: The skill is explicitly framed as serving only women, with trigger phrases and support flows limited to a specific gender group, and the README does not document a policy, legal, or locale-based justification for that restriction. This can create discriminatory access patterns or exclusion of users who need similar support, especially if deployed in a general-purpose assistant context without user choice or inclusive alternatives.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal