Maybe Finance - 个人财务助手

Security checks across malware telemetry and agentic risk

Overview

This skill is not clearly harmful, but it needs review because it asks for finance API access while the included CLI mostly shows hardcoded demo data and can claim actions succeeded without actually updating Maybe Finance.

Review before installing. Treat the Maybe API token as a secret, use only a trusted self-hosted Maybe instance, and verify whether commands actually call the Maybe API before relying on balances, reports, or transaction-added messages. Be especially cautious with any account update or delete workflow and keep backups of financial data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 84% confidence
Finding: The skill advertises destructive account deletion and financial data export/reporting workflows without any warning, confirmation guidance, or privacy notice. In a personal-finance context, these actions can cause irreversible data loss or expose highly sensitive financial information if invoked carelessly or by an over-permissioned agent.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal