Cron

Security checks across malware telemetry and agentic risk

Overview

This is a local schedule helper that stores reminder/job metadata on the user’s machine and does not show network access, credential use, or hidden execution behavior.

Install if you want a local recurring-schedule memory. Do not treat it as a background runner or system cron replacement unless you add a separate execution service, and avoid putting secrets in job titles or notes because they are stored persistently in local JSON files.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Tp4

High

Category: MCP Tool Poisoning
Confidence: 84% confidence
Finding: The skill description promises natural-language scheduling and time-based execution, but the analyzed behavior reportedly only stores structured schedule fields and computes next run metadata. This mismatch can mislead users or orchestrators into trusting the skill to perform actions it does not actually perform, creating integrity and operational-risk issues; hidden exposure of job details and stats also expands data handling beyond the stated purpose.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal