Reddi Self Improving Agent

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed local learning and reminder helper; its main risk is that users may persist sensitive context or enable broad optional hooks.

Install only if you want agents to keep local learning notes and future-session reminders. Avoid logging secrets, tokens, private transcripts, customer data, or sensitive stack traces; review entries before promoting them into shared agent guidance files, and prefer project-level or matcher-scoped hooks over global always-on hooks.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The user-level configuration installs the hook globally with an empty matcher, causing automatic execution across all prompts and projects. Because hook scripts run with the same permissions as the agent environment, this broad persistent trigger increases the blast radius of any future script flaw, prompt-sensitive behavior, or unintended data capture across unrelated repositories.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal