Durable Scheduler

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed scheduler skill with powerful but purpose-aligned automation capabilities; users should be cautious with privileged shell jobs.

Install only if you intentionally want a persistent host-side scheduler. Before using shell workflows, especially sudo commands, inspect the npm package/source, pin a trusted version, run jobs with the least privilege possible, test non-destructively, and keep cleanup/remediation scripts narrowly scoped and reversible.

SkillSpector

By NVIDIA

Vulnerability Patterns

Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The workflow example includes a privileged shell remediation step using sudo to run a cleanup script after approval, but the documentation does not warn about the operational and security risk of executing destructive commands with elevated privileges. In a scheduling/orchestration skill, examples are highly copyable, so an operator may deploy unsafe automation without validating the script, scope, or rollback plan.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal