Security audit

Manage privypad notes

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward PrivyPad API helper, but using it means an agent can access and change your private notes when you provide a token.

Install this only if you want an agent to work with PrivyPad notes through the API. Treat any pp_ token like a password, provide it only for tasks you intend, ask the agent to fetch the minimum notes needed, and require clear confirmation before updates or deletes, especially permanent deletion.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: The trigger text is unusually broad and instructs activation for almost any mention of PrivyPad, a pp_ token, or generic note-management requests. This can cause the skill to engage in contexts where the user did not clearly intend to invoke external API actions, increasing the chance of unauthorized data access or destructive note operations if downstream automation executes on weak confirmation.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal