Security audit
Cron Job Validator / 定时任务验证器
Security checks across malware telemetry and agentic risk
Overview
This skill is a plain cron-validation guide with no executable payload or install steps, and the only minor issue is an unexplained curl dependency.
Before installing, note that this appears to be guidance rather than a bundled cron-validator implementation. The unexplained curl requirement is unnecessary based on the visible artifact, so avoid approving any later network use unless the agent clearly explains why it is needed for your cron-validation task.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
