He Xiangjian Perspective V2

Security checks across malware telemetry and agentic risk

Overview

This is a markdown-only Chinese management-advice persona with no code, credentials, persistence, or hidden system access.

Install this if you want a Chinese-language business-management perspective. Treat first-person answers as simulated roleplay based on public information, not statements from He Xiangjian or professional business advice, and be aware that generic terms like delegation or professional manager may trigger the style unintentionally.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The trigger list includes broad, generic business terms such as “放权授权”, “职业经理人”, and “稳健经营”, which are likely to appear in ordinary enterprise discussions outside the intended use case. This can cause accidental activation or persona injection, leading the agent to respond in a role-conditioned way when the user did not explicitly request this skill.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal