个税汇算清缴助手（Tax Assistant）

Security checks across malware telemetry and agentic risk

Overview

This tax assistant appears purpose-built and local, but it asks for highly sensitive tax screenshots and financial details without privacy or redaction guidance.

Install only if you are comfortable sharing sensitive tax information with the agent. Prefer typing only the required numeric fields, and redact names, ID numbers, addresses, employer identifiers, QR codes, account details, and unrelated records before providing any screenshot.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

High

Confidence: 97% confidence
Finding: The skill explicitly solicits highly sensitive financial and personal tax data, including screenshots from the tax app, without warning the user about the sensitivity of that information or encouraging minimization/redaction. In context, this is more dangerous because tax screenshots can contain identifiers, employer data, income, deductions, and tax payments that could enable privacy harm, fraud, or downstream misuse if overshared.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal