Horus Pro

Security checks across malware telemetry and agentic risk

Overview

This meeting-notes skill is purpose-aligned and shows no exfiltration or destructive behavior, but it can expose confidential meeting content in local terminal output and saved files.

Install only if you are comfortable providing raw meeting notes to the agent. Use a private OUTPUT_DIR, avoid shared terminals or CI logs, and consider removing the full MEETING_NOTES print before processing confidential meetings.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill prints the full MEETING_NOTES transcript directly to stdout, which can expose sensitive business discussions, personal data, credentials, or regulated information to terminal logs, agent traces, or shared execution consoles. In meeting-processing context, the input is especially likely to contain confidential content, so unconditional full echoing is unsafe.

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill instructs saving multiple derived documents from meeting content to disk without any consent gate, sensitivity warning, retention guidance, or permission controls. Those files may persist confidential meeting details in a predictable output directory where other users, backup systems, or logging/collection tools can access them.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal