Huo15 Mind Map

Security checks across malware telemetry and agentic risk

Overview

This is a local mind-map conversion and rendering skill with broad activation keywords but no evidence of hidden network access, credential use, persistence, or destructive behavior.

Install this if you want a local mind-map generator. In setups with many skills, be aware that broad aliases and style keywords may activate it more often than intended; review the requested input and output paths before running exports.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 84% confidence
Finding: The trigger phrases are broad enough to match many ordinary requests about diagrams or mind maps, which can cause the skill to activate unexpectedly. Over-broad activation increases the chance the skill handles user content outside its intended scope, leading to unintended file processing or confusing tool invocation.

Vague Triggers

Medium

Confidence: 87% confidence
Finding: Embedding a long, ambiguous trigger list directly in the manifest description makes activation criteria opaque and overly permissive. This can increase accidental routing of unrelated user requests into the skill, especially because terms like diagram-style or design-related keywords overlap with common requests.

VirusTotal

59/59 vendors flagged this skill as clean.

View on VirusTotal