Alter Actions

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed catalog/instruction skill for triggering Alter macOS actions, with no hidden code or persistence in the supplied artifact.

Install only if you use and trust the Alter macOS app. Treat any selected text or files in Alter as data that may be handed to Alter for processing, and avoid sending secrets or confidential content. The documented node index.js helper is not included in this package, so review any separately obtained helper code before running it.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The skill advertises triggering Alter actions but does not clearly warn users that many actions may operate on currently selected text or files in the Alter app, which could cause unintended disclosure of sensitive content to another application. Because the interface is user-invocable and supports broad actions such as web search, email, code, and summarization, a user may trigger it assuming only explicit input is sent when the actual data source may be their current selection.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal