Esports commentator · Crayfish (Claw Claw)

Security checks across malware telemetry and agentic risk

Overview

This is a Chinese-language game patch briefing skill that stays within summarizing user-provided or official patch information and does not request sensitive access or run code.

Install this if you want Chinese patch-note and meta summaries for games. Provide official patch notes when possible, and treat any meta conclusions as commentary rather than guaranteed rankings or win-rate advice.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: The trigger list is broad enough that ordinary user requests about game patches or meta could invoke this skill unintentionally. While this does not create a direct exploit path, it can cause incorrect routing, context confusion, and unintended application of the skill's instructions to unrelated conversations.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal