Todowrite

Security checks across malware telemetry and agentic risk

Overview

This is a small instruction-only TODO routing skill whose file and GitHub issue actions are disclosed and aligned with its purpose.

Install this if you want help routing TODOs between session notes, project TODO files, and GitHub Issues. Review local TODO file edits before accepting them, and only approve GitHub issue creation when you intend to publish the item in the current repository.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 94% confidence
Finding: The skill description includes broad trigger phrases such as "TODO management," "checklist," and "register as issue," which are common in ordinary user conversations and can cause unintended activation. Because this skill can route content into persistent files or GitHub issue workflows, accidental invocation could lead to unwanted state changes, persistence of sensitive notes, or nudging the agent toward external actions when the user did not intend to use this skill.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal