Inner Life Chronicle

Security checks across malware telemetry and agentic risk

Overview

This is a coherent local journaling skill that intentionally reads and updates agent-memory files, with cautions around persistent state changes and a dependency setup command.

Install this only if you want your agent to keep a persistent local diary and update inner-state/questions files. Review and trust the separate inner-life-core skill before running its init.sh command, since that command is outside this package.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: The on-demand trigger phrases are broad enough to overlap with ordinary user requests such as asking for a journal entry or daily reflection, which could cause the skill to activate unexpectedly. Because the skill performs writes to persistent memory files and updates internal state, accidental invocation can lead to unintended data modification rather than just a harmless read-only action.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill explicitly instructs the agent to write to multiple persistent memory files, including updating inner-state.json and questions.md, without requiring user awareness or confirmation. In a system where users may not expect stateful side effects from a journaling request, this can silently alter stored memory, create misleading records, or overwrite prior state.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal