Self-Correct

Security checks across malware telemetry and agentic risk

Overview

The skill’s snapshot purpose is understandable, but its instructions include unsafe recursive deletion commands that could erase unintended files.

Install only if you are comfortable reviewing and controlling every deletion command. Do not let it run cleanup or batch removal automatically; require explicit confirmation, verify paths are under the intended snapshot directory, and replace the xargs rm -rf patterns with safer bounded deletion before use.

SkillSpector

By NVIDIA

Vulnerability Patterns

Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (5)

Description-Behavior Mismatch

Medium

Confidence: 88% confidence
Finding: The skill presents itself as a recovery/snapshot aid but also includes a destructive wrapper that performs rm -rf on an arbitrary target. That increases the risk that a caller will invoke it under a false sense of safety, leading to unintended deletion of important files or directories.

Tool Parameter Abuse

High

Category: Tool Misuse
Content: echo "[$(date '+%H:%M:%S')] snapshot: $snap_path" # 保留最近3个 ls -dt "$snap_dir"/*/ 2>/dev/null | tail -n +4 | xargs rm -rf 2>/dev/null fi }
Confidence: 96% confidence
Finding: rm -rf 2>/dev/

Tool Parameter Abuse

High

Category: Tool Misuse
Content: local snap_dir="/tmp/nova-snapshots" [ -d "$snap_dir" ] || return 0 # 删除超过24小时的快照 find "$snap_dir" -maxdepth 1 -type d -mmin +1440 | xargs rm -rf 2>/dev/null echo "[$(date '+%H:%M:%S')] snapshots cleaned" } ```
Confidence: 97% confidence
Finding: rm -rf 2>/dev/

Chaining Abuse

High

Category: Tool Misuse
Content: echo "[$(date '+%H:%M:%S')] snapshot: $snap_path" # 保留最近3个 ls -dt "$snap_dir"/*/ 2>/dev/null | tail -n +4 | xargs rm -rf 2>/dev/null fi }
Confidence: 95% confidence
Finding: | xargs rm

Chaining Abuse

High

Category: Tool Misuse
Content: local snap_dir="/tmp/nova-snapshots" [ -d "$snap_dir" ] || return 0 # 删除超过24小时的快照 find "$snap_dir" -maxdepth 1 -type d -mmin +1440 | xargs rm -rf 2>/dev/null echo "[$(date '+%H:%M:%S')] snapshots cleaned" } ```
Confidence: 97% confidence
Finding: | xargs rm

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal