Running Coach

Security checks across malware telemetry and agentic risk

Overview

This looks like a legitimate running-coach skill, but it needs Review because it uses Intervals.icu credentials and can change live training-calendar data without enough safety guidance.

Install only if you intend to let the skill work with your Intervals.icu account. Prefer environment variables or a secret manager over config.json, do not commit credentials, and require a dry run or explicit confirmation before any upload, update, bulk operation, or delete.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The documentation explicitly exposes a destructive DELETE endpoint but provides no warning, confirmation requirement, or safety guidance around its use. In an agent skill context, this increases the chance that a user or downstream automation could remove training events unintentionally, causing data loss in the athlete's schedule.

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The skill instructs users to store API credentials in a local config.json file without warning about plaintext secret exposure, accidental commits, or insecure file permissions. This can lead to credential leakage and unauthorized access to the user's Intervals.icu account if the file is shared, backed up insecurely, or checked into version control.

VirusTotal

54/54 vendors flagged this skill as clean.

View on VirusTotal