Back to skill

Security audit

file-classification-manager

Security checks across malware telemetry and agentic risk

Overview

This file organizer matches its stated purpose, but it can automatically read and move workspace files without a built-in preview or confirmation step.

Install only if you are comfortable with a skill that can reorganize files in a workspace. Avoid running broad cleanup on important or sensitive workspaces until it offers preview/approval, path validation, and a backup or rollback plan.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
87% confidence
Finding
The function iterates over files in the workspace root, reads them, and moves them into project-specific directories automatically with no confirmation, dry-run mode, or explicit allowlist. In an agent skill context, this is risky because invoking the skill can silently reorganize or effectively hide user files, causing data loss, workflow disruption, or misclassification of sensitive content.

Ssd 3

Medium
Confidence
91% confidence
Finding
The skill explicitly instructs logging all file operations to persistent memory, which can retain sensitive file paths, filenames, project names, and possibly user context beyond the immediate task. In a file-classification skill that touches many user documents across projects, this broad persistent logging increases the chance of unnecessary data retention and inadvertent disclosure.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.