Subagent Watchdog

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed watchdog script that waits for a local marker file and optionally sends a configured timeout alert.

Before installing, confirm this marker-file workflow fits your subagent process. If enabling notifications, set WATCHDOG_CHAT_ID and WATCHDOG_CHANNEL only to intended destinations, and avoid sensitive task names in labels because labels may be included in timeout alerts.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: If WATCHDOG_CHAT_ID is set, the script may send the subagent label and timeout-derived status message to an external messaging channel without any explicit disclosure or confirmation at runtime. This can leak operational metadata, task identifiers, or sensitive labels to third-party services, especially because the send is silent and failures are suppressed.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal