Security audit

Flower Fruit Basket Balloon Delivery

Security checks across malware telemetry and agentic risk

Overview

This appears to be a flower-ordering helper with expected third-party fulfillment data sharing, but users should confirm before sending recipient details.

Install only if you are comfortable with recipient and order details being sent to the flower-ordering service for fulfillment. Use it for explicit flower-delivery requests, review the recipient information carefully, and confirm before the agent submits personal details or payment/order data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 93% confidence
Finding: The skill advertises broad activation phrases such as generic gifting and ordering terms, which can cause the skill to trigger in contexts where the user did not explicitly intend to invoke a flower-ordering workflow. In an agentic environment, accidental activation can lead to unnecessary collection of recipient PII or progression into a purchasing flow with an external service.

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The skill instructs the agent to collect and transmit recipient details including name, phone number, address, institution, and card message to third-party endpoints, but it does not present a prominent privacy warning or consent requirement at the point of use. This creates a real privacy risk because sensitive recipient and occasion data may be shared externally without clear user awareness.

VirusTotal

59/59 vendors flagged this skill as clean.

View on VirusTotal