Back to skill

Security audit

Productivity Tracker

Security checks across malware telemetry and agentic risk

Overview

This is a local productivity tracker whose file storage and report generation match its stated purpose, with no network, credential, or destructive behavior found.

Install only if you are comfortable storing your activity history locally in plain JSON and Markdown files. Prefer the explicit /track commands, and manually manage or delete the local data directory if you do not want long-term history retained.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Description-Behavior Mismatch

Medium
Confidence
95% confidence
Finding
The skill persists user activity history to local disk even though its description implies it can operate on user-provided data without needing ongoing storage. Activity names, timestamps, and generated reports can reveal sensitive behavioral patterns, so undisclosed persistence creates a real privacy and data-handling risk even if there is no obvious exfiltration path.

Vague Triggers

Medium
Confidence
93% confidence
Finding
The standalone trigger phrase "complete" is overly generic and likely to appear in normal conversation unrelated to activity tracking. In an always-listening or loosely routed agent environment, this can cause unintended state changes such as prematurely stopping tracking or corrupting activity logs, reducing data integrity and user trust.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The code writes activity data to disk without any indication of user notice, consent, or runtime disclosure. Because this skill tracks daily behavior and time use, silent local storage can expose sensitive personal or workplace information to other local users, backup systems, or later components that read the same files.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
Report generation writes a markdown file containing a dated summary of user activities, including potentially sensitive names and durations, without any warning or consent flow. This increases privacy exposure because the generated reports are easy to browse, copy, sync, or index by other local tools.

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.