UpNote
Security checks across malware telemetry and agentic risk
Overview
This is a straightforward UpNote automation skill that can create or open notes through UpNote URL commands, with no hidden data access or persistence beyond normal UpNote changes.
Install this only if you want an agent to automate your local UpNote app. Review note titles, content, notebook targets, and search/open requests before approving commands, because create actions can add persistent content to UpNote immediately.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.