Song

Security checks across malware telemetry and agentic risk

Overview

This songwriting skill is coherent and limited to local song drafts and style preferences, with no evidence of hidden execution or data exfiltration.

Install if you are comfortable with the agent keeping song drafts and style preferences in ~/songs. Avoid putting secrets or very private details in drafts or preferences, and review or delete that folder if you do not want old themes or style choices reused.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Low

Confidence: 92% confidence
Finding: The skill explicitly instructs persistent storage of user creative preferences in ~/songs/preferences.md without mentioning consent, retention limits, review controls, or deletion options. While this is not highly sensitive by default, preference histories can still reveal personal interests, emotional themes, and behavioral patterns, creating a privacy risk if stored longer than users expect or accessed by others.

Missing User Warnings

Low

Confidence: 91% confidence
Finding: The skill instructs the agent to read a user-local preferences file from the home directory without first obtaining explicit user consent or clearly disclosing that stored personal data will be accessed. Even though the file path is fixed and the data appears related to songwriting preferences, it still creates an unnecessary privacy risk by implicitly pulling prior user data into the session.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal