Workspace Guardian

Security checks across malware telemetry and agentic risk

Overview

This skill is mostly a file-organization rule set, but it can cause agents to delete or move local files automatically from ambiguous user comments.

Install only if you want a strict agent workspace policy. Before using it, override the cleanup rules so the agent asks before deleting or pruning reports, images, scripts, archives, configuration-area files, or any file outside a clearly scoped temporary directory.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: The skill instructs the agent to immediately delete files based on broad, ambiguous dissatisfaction cues such as '不行', '重做', or even '再生成一个'. This creates a real risk of unintended destructive actions and data loss, especially in conversational contexts where user intent may be unclear, the file may be valuable, or deletion may affect outputs outside the current task scope.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal