Back to skill

Security audit

Pilot Cron

Security checks across malware telemetry and agentic risk

Overview

This is a clearly described scheduler skill whose cron and systemd persistence are expected for its purpose, though users should review and remove scheduled jobs when done.

Install only if you intentionally want recurring automated Pilot tasks. Before running the examples, review the exact crontab or systemd entry, target script, log path, and Pilot peer; keep removal commands handy for deleting the cron entry or disabling the timer later.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Rogue AgentSelf-Modification, Session Persistence
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (6)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
This section provides commands that persistently modify the user's scheduling configuration and can cause recurring execution, but it does so without any explicit warning that it changes crontab state or creates durable automation. In a security-sensitive agent skill, undisclosed persistence is risky because users or downstream agents may copy commands without appreciating the ongoing system impact.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The workflow example writes an executable script into the user's home directory, installs a cron job, logs output, and removes a temporary file, all without clearly disclosing that it establishes persistence and changes filesystem state. That is dangerous in agent contexts because it normalizes durable background behavior that may continue submitting network tasks after the initial run.

Session Persistence

Medium
Category
Rogue Agent
Content
**Add cron job:**
```bash
crontab -l | { cat; echo "0 * * * * /path/to/submit-task.sh"; } | crontab -  # Every hour
crontab -l | { cat; echo "0 2 * * * /path/to/daily-backup.sh"; } | crontab -  # Daily at 2 AM
```
Confidence
93% confidence
Finding
crontab -l

Session Persistence

Medium
Category
Rogue Agent
Content
**Add cron job:**
```bash
crontab -l | { cat; echo "0 * * * * /path/to/submit-task.sh"; } | crontab -  # Every hour
crontab -l | { cat; echo "0 2 * * * /path/to/daily-backup.sh"; } | crontab -  # Daily at 2 AM
```

**Systemd timer (more reliable):**
Confidence
93% confidence
Finding
crontab -l

Session Persistence

Medium
Category
Rogue Agent
Content
chmod +x "$SCRIPT_DIR/health-check.sh"

# Install cron jobs
crontab -l 2>/dev/null | grep -v 'pilot-cron' > /tmp/crontab.tmp || true
cat >> /tmp/crontab.tmp <<EOF
# pilot-cron: Health check every 5 minutes
*/5 * * * * $SCRIPT_DIR/health-check.sh >> $HOME/.pilot/logs/health-check.log 2>&1
Confidence
96% confidence
Finding
crontab -l

Session Persistence

Medium
Category
Rogue Agent
Content
Persistent=true
EOF

systemctl --user enable pilot-task.timer
systemctl --user start pilot-task.timer
```
Confidence
90% confidence
Finding
systemctl --user enable

VirusTotal

60/60 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.