Windows Native Dialog

Security checks across malware telemetry and agentic risk

Overview

The skill’s Windows PowerShell use appears tied to its local Windows file workflow, with no evidence of hidden theft, persistence, or destructive behavior.

Install only if you trust the publisher and want a Windows-native file selection workflow from WSL2. Review the exact PowerShell command before first use, keep it scoped to selecting intended files, and do not allow the agent to adapt it into unrelated host commands.

SkillSpector

By NVIDIA

Vulnerability Patterns

Behavioral ASTexec() Call, eval() Call, Dynamic Import
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly instructs the agent to invoke Windows PowerShell from WSL2 via exec, which crosses a trust boundary and enables arbitrary host-side command execution. Although the example appears aimed at opening a native file dialog workflow, the skill provides no warning, restriction, or validation around what command/script is run, making misuse or accidental execution on the Windows host plausible.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal