习惯追踪

Security checks across malware telemetry and agentic risk

Overview

This appears to be a habit check-in helper with local progress tracking; the main caution is that broad trigger words could invoke it unintentionally.

Install if you want a local habit/check-in tracker. Use explicit requests when checking in, review where it stores its JSON state, and avoid using it for sensitive health, financial, or private personal records unless you are comfortable with that data being saved locally.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 93% confidence
Finding: The activation phrases are very broad generic terms such as “打卡 / 签到 / 习惯 / checkin”, which are likely to appear in normal conversation and can cause unintended skill invocation. This increases the risk of accidental execution and data modification, especially because the skill persists state to a local JSON file when invoked.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal