Chronicler

Security checks across malware telemetry and agentic risk

Overview

This markdown-only skill is a disclosed local drafting workflow that reads session transcripts on a cron schedule, which is privacy-sensitive but aligned with its stated purpose.

Install only if you are comfortable with saved chat transcripts being converted into local publishing drafts on a recurring schedule. Review the `chat-memory` dependency separately, keep track of the `chronicle-reporter` cron job, and manually inspect every generated dispatch before sharing it publicly.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill sets up a recurring cron job that repeatedly reads session transcripts from `memory/sessions/` and appends derived content to `chronicle/CHRONICLE.md`, but it does not include an explicit user-facing warning about continuous access to historical conversations or ongoing file modification. Because the source material is chat history, this creates a meaningful privacy and consent risk: users may enable it once and forget that future sessions will continue to be processed and republished into a persistent summary file.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal