Zhouyi Bazi Analysis

Security checks across malware telemetry and agentic risk

Overview

This is a reference-only Chinese metaphysics skill with no code execution, credentials, persistence, or hidden system access.

This appears safe to install from an agentic-security perspective. Treat its divination and metaphysics output as cultural or interpretive reference material, not as a substitute for professional medical, legal, financial, psychological, or safety advice.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Natural-Language Policy Violations

Medium

Confidence: 91% confidence
Finding: This markdown file contains user-facing skill description and operating guidance exclusively in Chinese, which can amount to forcing a specific language/locale. The policy allows locale constraints when they are explicitly offered as a choice or clearly justified, but no such opt-in or justification is provided here.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal