Security audit

Workspace Cleaner

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed workspace cleanup helper that can change local agent context files only after a proposed plan is confirmed.

Install only if you want an agent to reorganize persistent workspace context files. Before approving any run, review the proposed file list and ask for a diff or dry run, especially for MEMORY.md, AGENTS.md, SOUL.md, IDENTITY.md, USER.md, and any BOOTSTRAP.md deletion.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The skill performs potentially destructive actions across multiple workspace files, including deletion of BOOTSTRAP.md and relocation or removal of content, but its user-facing description does not clearly warn about these effects. Even though the body says confirmation is required, an insufficiently explicit description increases the risk of users invoking the skill without understanding that file deletion and broad modification may occur.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal