Workspace Database Manager
Security checks across malware telemetry and agentic risk
Overview
This skill appears to be a local workspace indexing tool, but it relies on missing or external scripts and an optional scheduled updater that could broadly catalog workspace files.
Install only if you intentionally want a local index of workspace documentation and file-tree metadata. Before running any referenced Python scripts, verify where they come from and what paths they scan, add exclusions for private or sensitive directories, and avoid enabling the optional cron maintainer until its source, schedule, logging, and uninstall process are clear.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
63/63 vendors flagged this skill as clean.