temporal-cortex-scheduling

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed calendar scheduling skill that needs sensitive calendar access, but its permissions and booking behavior match its stated purpose.

Install only if you are comfortable granting calendar and optional contacts access to this MCP server. Prefer Local Mode unless you need cross-user Open Scheduling, review provider OAuth permissions, protect the local credential files, and require explicit confirmation before booking meetings or sending attendee details through Temporal Links.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The booking examples explicitly send attendee personal data such as email address and name to a public scheduling endpoint, but the documentation provides no privacy notice, consent expectation, retention guidance, or warning that this data is transmitted to a third-party service. In a scheduling skill, agents may copy this pattern directly, leading to unnecessary disclosure of PII or booking on behalf of users without clear authorization boundaries.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal