Plants

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward plant-care tracking skill that stores local plant notes and reminders in a dedicated folder.

Before installing, understand that the skill may create ~/plants/ and keep local notes, schedules, locations, and optional photos there. Ask the agent to confirm before creating the folder or adding records if you want explicit control over local persistence.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The trigger condition "User mentions a plant" is excessively broad and can cause the skill to activate during casual or incidental discussion, not just when the user intends to use plant-tracking functionality. That creates a scope/consent problem: the agent may begin collecting data or proposing file operations based on ambiguous context, increasing the chance of unintended actions.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill states it will create `~/plants/` on the local filesystem but does not clearly disclose that behavior or request user confirmation first. Silent or implicit file writes can violate user expectations and, when paired with broad triggering, may result in unintended persistence of user data on disk.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal