Deep Work Planner
Security checks across malware telemetry and agentic risk
Overview
This is a simple productivity-planning skill that only turns user-provided task lists into schedules and does not request sensitive system access.
This appears safe for ordinary task-planning use. Users should still avoid pasting highly sensitive client, financial, medical, or personal details into task lists unless they are comfortable sharing that information with their agent. The external Pro-version link is outside the installed skill and should be evaluated separately before purchase.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
57/57 vendors flagged this skill as clean.