Workspace Cleaner

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed local cleanup helper that defaults to preview mode and moves selected workspace files to trash only when the user explicitly enables execution.

Install only if you are comfortable with a tool that can move matching local workspace files to trash when run with --execute. Start with preview mode, review the listed paths carefully, do not rely on the documented --exclude option because it is not implemented in the script, and avoid scheduled or quiet execution until the cleanup patterns match your workspace.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The HEARTBEAT example recommends periodic and partially automatic cleanup ('Auto-clean items >30 days old and <10MB') without an explicit warning that unattended deletion can still remove important user data due to misclassification, stale patterns, or unexpected workspace layouts. In a cleanup skill, documentation that encourages automation materially increases the chance that operators will schedule destructive actions without human review, making mistakes more likely even if the tool uses trash.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal