Exponential

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward Exponential task-management helper, but users should handle its JWT token carefully and confirm generic task requests are meant for Exponential.

Install only if you intend Codex to manage Exponential data through the external exponential-cli package. Verify that the npm package is the expected CLI, avoid pasting JWTs into shared terminals or transcripts, rotate the token if it is exposed, and review create/update actions before they run in shared workspaces.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 82% confidence
Finding: The trigger list is broad and includes generic productivity phrases like "create a task," "update task," and "daily plan," which can cause the skill to be invoked in situations the user did not specifically intend for Exponential. That increases the chance of unintended task-management actions being routed to this CLI skill, especially in environments with multiple overlapping skills or tools.

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill instructs users to authenticate with a JWT passed directly on the command line, which is sensitive because command-line arguments may be exposed through shell history, process listings, logs, or telemetry. The skill provides no warning about secure credential handling, making accidental token disclosure more likely in normal use.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal