Quotes

Security checks across malware telemetry and agentic risk

Overview

This is a local quotes organizer that may save personal context and send quote reminders, with no hidden code or external data sharing found.

Install if you want a local Markdown-based quotes library. Before enabling reminders, decide the schedule, notification channel, and mood/context triggers yourself, and avoid storing sensitive personal notes unless you are comfortable keeping them under ~/quotes/.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The skill defines broad triggering conditions such as surfacing a quote when the user "needs inspiration" and sending quotes automatically based on schedule or criteria, but it does not specify clear consent, trigger boundaries, or how the agent determines user state. This can lead to unsolicited actions, surprising behavior, or misfiring automations that affect the user experience and privacy expectations.

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill states it will create a workspace in ~/quotes/ and send notifications automatically, but it does not present any user-facing warning or confirmation around filesystem changes, retained personal content, or notification behavior. Even though the actions are low-risk compared with code execution, they still modify the local environment and may store sensitive personal reflections or conversation-derived quotes without sufficiently informed consent.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal