Meeting Transcript Action Extractor

Security checks across malware telemetry and agentic risk

Overview

This is a simple instruction-only skill for extracting action items from meeting transcripts, with no code execution or hidden access.

Install this only if you want your agent to analyze meeting transcript text. Before using it, make sure you are authorized to process the transcript and redact unnecessary secrets, personal data, customer details, legal, financial, or confidential business information.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: This skill explicitly targets meeting and call transcripts, which commonly contain personal data, confidential business information, and sensitive operational details. Omitting any warning about privacy exposure can cause users to paste sensitive transcripts into the skill without understanding the disclosure risk, increasing the chance of unauthorized data handling or policy violations.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal