too
Security checks across malware telemetry and agentic risk
Overview
This is a simple todo-management skill with disclosed task create, update, list, and delete behavior and no executable code or hidden access.
Before installing, understand that an agent using this skill may create, change, or delete todo items based on your prompts. For important task lists, use explicit wording and confirm where your agent stores tasks and whether deletions can be undone.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.