Bitmap Vectorize

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only skill for turning user-provided physics diagrams into Canvas or SVG, with no hidden system access or persistence.

Install if you want help recreating physics or schematic-style images as editable Canvas/SVG. For general logos, photographs, or arbitrary screenshots, expect uneven results because the skill is written mainly for physics diagrams; review any generated code before using it in a webpage or shared document.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The top-level skill description says it converts bitmap images to vector graphics for screenshots, hand-drawn photos, schematics, and similar inputs, which is broader than the body content's physics-specific workflow. In an agentic routing system, this mismatch can cause the skill to be invoked for general image-vectorization tasks it was not designed to handle, leading to incorrect delegation, user confusion, and potentially unsafe downstream behavior if other safeguards depend on accurate scope boundaries.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal