Security audit
Paperless Cloud Intake Hardening
Security checks across malware telemetry and agentic risk
Overview
This is a procedure-only Paperless-ngx hardening guide with disclosed, purpose-aligned local automation guidance and no bundled executable code.
Before using it, review any generated scripts, scheduler jobs, Paperless API calls, and file paths. Keep permissions narrow, avoid granting broad Full Disk Access to shell runtimes unless necessary, and approve any cleanup or deployment-state changes explicitly.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
