Pest & Disease Tracker

Security checks across malware telemetry and agentic risk

Overview

This is a local garden pest and disease tracker with treatment suggestions, local data storage, and no evidence of hidden or malicious behavior.

Install only if you are comfortable storing garden problem notes, affected plants, severity, treatments, and effectiveness history locally in ~/.openclaw/workspace/pest_tracker_db.json. For any pesticide or fungicide recommendation, verify the current product label, crop and pest compatibility, local rules, required protective equipment, child and pet precautions, and edible-crop or pre-harvest restrictions before acting.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: The script provides specific pesticide and fungicide product recommendations and records their use, but it does not warn users to verify local regulations, crop-label compatibility, edible-harvest intervals, protective equipment, or plant-specific safety. In a gardening tool, users may reasonably rely on these recommendations as actionable guidance, which can lead to unsafe chemical use, crop contamination, or harm to people, pets, and beneficial organisms.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal