Paperless

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Paperless-NGX helper, but it should be treated as having access to the user's document library through their Paperless API token.

Install only if you trust the ppls CLI and are comfortable giving it access to your Paperless-NGX instance. Use a least-privilege token if available, avoid exposing the token in logs or shared terminals, keep searches narrow, and confirm document IDs, file paths, and metadata before uploads or updates.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The skill includes commands that upload documents and modify remote Paperless-NGX metadata, but it does not clearly warn that these actions change system state. In an agent context, this increases the risk of accidental uploads, mislabeling, or unintended bulk changes to a document repository, especially if a user expects the skill to be primarily informational.

Missing User Warnings

Medium

Confidence: 83% confidence
Finding: The setup instructions tell users to set an API token directly in CLI configuration without any warning that the token is a sensitive credential. This can lead to unsafe handling such as exposing the token in shell history, screenshots, logs, or shared environments, which could allow unauthorized access to the Paperless-NGX instance.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal