Little Steve Task Manager
Security checks across malware telemetry and agentic risk
Overview
This is a coherent local task manager, but users should review it because its agent-facing Bash examples can become unsafe if raw task text is pasted into commands without shell-safe escaping.
Review before installing. Use it only with agents or workflows that pass task titles and tags as safely escaped arguments, and consider clearing the bundled sample tasks before real use. The tool appears local and purpose-aligned, but it writes persistent task data and relies on raw Bash command execution.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.