WastePickupReminder

Security checks across malware telemetry and agentic risk

Overview

This reminder skill is mostly local and transparent, but its recurring automation can generate external-message requests too broadly and stores sensitive contact/webhook details with limited warning.

Review the schedule logic before enabling the cron job, especially if targets include group chats, email, or Discord webhooks. Keep config.json private, rotate any exposed Discord webhook URL, and ensure the assistant treats generated reminder text as message content rather than executable instructions.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: This markdown file documents that the skill stores phone numbers, chat IDs, email addresses, and a Discord webhook URL in `config.json`, but it does not warn users that these are sensitive identifiers/credentials that should be protected. Because the skill description explicitly encourages users to place this data in local files, it should disclose the privacy and security implications of doing so.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal