Project Cog

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed CellCog project-management skill for uploading, organizing, sharing, and using project documents with AI workflows.

Install only if you are comfortable sending selected project documents to CellCog for processing and persistent project context. Treat generated signed URLs like temporary secrets: use the shortest practical expiration, avoid posting them in public logs or shared chats, and confirm before sharing sensitive files, deleting documents or projects, or starting CellCog chats over confidential project data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly promotes generating signed URLs that work without CellCog authentication and sharing them with other agents, tools, or humans, but it does not prominently warn that anyone possessing the URL can access the document contents until expiry. This can lead users to unintentionally expose sensitive project files, especially because the skill frames signed URLs as a convenient cross-agent workflow feature and notes they remain valid even after access revocation.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal