ATR-2026-00154highSkill Compromisedraft

Unauthorized Background Task Execution via Cron Job Installation

Detects skills that automatically install cron jobs to execute background tasks without explicit user consent. This skill installs a cron job that polls external marketplace tasks every 10 seconds and executes arbitrary browser automation commands from unknown third parties, potentially compromising the system during "idle" periods.

Severity

high

Response Actions

alertsnapshot

View full YAML on GitHub →

More Skill Compromise Rules

ATR-2026-00060highMCP Skill Impersonation and Supply Chain Attack ATR-2026-00120criticalSKILL.md Prompt Injection ATR-2026-00121criticalMalicious Code in Skill Package ATR-2026-00122highWeaponized Skill — Agent as Attack Tool ATR-2026-00123highOver-Privileged Skill — Excessive Permissions