Back to skill

Security audit

Productivity Tracker

Security checks across malware telemetry and agentic risk

Overview

This is a simple local task and habit tracker with disclosed local storage and no evidence of network access, credential use, or hidden behavior.

Install only if you are comfortable storing task names, habits, timestamps, and completion history in ~/.task-tracker/. Use explicit commands for state-changing actions like complete, delete, and habit check, and avoid storing sensitive personal or work details unless your local machine and backups are trusted.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
88% confidence
Finding
The invocation examples are short, generic natural-language phrases like '开始番茄钟' and '专注 25分钟' that can plausibly appear in ordinary conversation. Without explicit activation boundaries, an agent may trigger task-tracker actions when the user is merely discussing plans rather than intentionally invoking the skill, creating unintended state changes or timer actions.

Vague Triggers

Medium
Confidence
91% confidence
Finding
Most documented commands are underspecified imperative phrases such as '完成任务 1', '今日统计', and '打卡 早起', which are not clearly distinguishable from normal user requests. In an agent setting, this increases the chance of accidental invocation, unauthorized state modification, or confusion about whether the assistant should discuss the phrase or execute it.

Missing User Warnings

Low
Confidence
84% confidence
Finding
The skill states that data is stored persistently in '~/.task-tracker/' but does not explain retention duration, file contents, access expectations, or sensitivity considerations. Users may place personal schedules, habits, or work details into the tool without realizing that this information remains on disk and could be exposed to other local users, backups, or later compromise.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.