Security audit
Cron Retry
Security checks across malware telemetry and agentic risk
Overview
The skill is transparent about retrying network-failed cron jobs, but it can automatically rerun any matching enabled job on every heartbeat without clear retry bounds or per-job approval.
Install only if the cron jobs it can rerun are safe to repeat. Before enabling the heartbeat integration, add an explicit allowlist, cooldown, retry cap, and avoid automatic retries for jobs that post publicly, send duplicate messages, spend money, or change important data.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
