舟谱订单导入
Security checks across malware telemetry and agentic risk
Overview
This skill is a local spreadsheet converter for Zhoupu order-import templates and shows no evidence of hidden networking, credential access, persistence, or destructive behavior.
Install only if you are comfortable letting the skill process the specific order and price spreadsheets you provide. Review the generated Excel files before uploading them to Zhoupu, keep the documented human approval step, and ensure dependencies such as pandas and openpyxl are installed.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
67/67 vendors flagged this skill as clean.