Obsidian Organizer Hardened

Security checks across malware telemetry and agentic risk

Overview

This is a local Obsidian vault organizer that can rename or reorganize notes, but its file-changing behavior is disclosed, user-directed, and guarded by dry-run and backup instructions.

Install only if you want an agent to help audit and standardize an Obsidian vault. Always run the audit in dry-run mode first, review every proposed rename or move, make a fresh backup before bulk changes, and point it only at the intended vault rather than a broad home or documents directory.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The markdown checklist instructs the user to apply renames, move notes, and archive stale content, all of which can affect user data and system integrity if performed incorrectly. The file provides procedural steps but does not include any warning or cautionary note about possible data loss, broken references, or the need to verify results before proceeding.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal