Clean Filenames

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward local filename-cleanup tool, but users should be careful because it can rename many files in place.

Install only if you want a local tool that renames files. Before running it on an important or recursive directory, test on a small copy or make a backup, because changed filenames can break links, scripts, imports, media catalogs, or project references.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill advertises recursive and directory-wide renaming but does not clearly warn users that it will modify filenames in bulk, which can unexpectedly affect large numbers of files. This is dangerous because renaming can break scripts, references, imports, backups, or workflows that depend on exact filenames, especially when used recursively on broad paths.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal