FlowMind

Security checks across malware telemetry and agentic risk

Overview

FlowMind is a straightforward API-reference skill for managing a user's FlowMind productivity data, with disclosed read, write, and delete capabilities.

Install only if you intend to let the agent access your FlowMind workspace. Use a revocable or scoped API key if available, store it securely, and require explicit confirmation before deletions or large updates to goals, tasks, notes, people, or tags.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: The skill description is broad enough to match generic productivity requests, which can cause the agent to invoke this skill in situations where the user did not clearly intend to use FlowMind. Because the skill supports state-changing operations across goals, tasks, notes, people, and tags, over-broad routing increases the chance of unintended data access or modification.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The documentation prominently exposes destructive DELETE operations but does not instruct the agent to warn the user, verify target identifiers, or obtain confirmation before deletion. In an agentic setting, this omission can translate into accidental or prompt-induced destructive actions against the user’s productivity data.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal