Heartbeat Checklist

Security checks across malware telemetry and agentic risk

Overview

The skill is not clearly malicious, but it gives a heartbeat agent potentially disruptive cleanup and system-management authority without enough user control.

Review before installing. Use it only in report-only mode unless you add explicit approval for closing apps, changing browser tabs, deleting or trashing files, and starting, stopping, or enabling system services. Confirm what the Hydra daemon and resource-monitor.timer are on your machine before allowing any action against them.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The checklist authorizes potentially disruptive or destructive housekeeping actions such as closing apps, cleaning tabs, and moving screenshots to trash without requiring user confirmation or warning about impact. In an autonomous agent context, these actions can cause data loss, interrupt active work, or remove evidence/artifacts the user intended to keep.

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal