Back to skill

Security audit

Google Maps Contact Extract

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says, but it also encourages bulk contact scraping with stealth parallel browser sessions and weak user-facing guardrails.

Install only if you intentionally want a browser-assisted Google Maps and business-website contact extraction workflow. Use it on public business data, keep runs small, avoid stealth or anti-throttling tactics, respect site terms and applicable privacy laws, and do not use it to harvest personal or sensitive contact information.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (6)

Context-Inappropriate Capability

Medium
Confidence
94% confidence
Finding
The skill goes beyond simple extraction and explicitly advises anti-throttling and parallelized 'stealth' browser sessions to increase scraping throughput. That makes the capability more operationally evasive and scalable, which raises abuse potential for mass collection and undermines normal platform rate-limiting controls.

Context-Inappropriate Capability

Low
Confidence
80% confidence
Finding
The persistent memory file introduces stateful behavior not essential to the stated task and can accumulate operational knowledge about bypasses, failures, or more effective scraping strategies over time. Even if framed as troubleshooting, it creates a durable optimization channel that can strengthen future scraping or evasive behavior beyond the immediate user request.

Vague Triggers

High
Confidence
90% confidence
Finding
The manifest's broad trigger list allows the skill to activate for many loosely related lead-generation and scraping requests, increasing the chance it runs in contexts the user did not clearly intend. For a skill that performs multi-site contact harvesting, overbroad activation materially increases misuse risk and reduces meaningful user awareness.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill describes large-scale harvesting of business contact details from Google Maps and associated websites without surfacing user-facing warnings about privacy, acceptable use, scraping load, or terms-of-service implications. In context, that omission makes the workflow more dangerous because it normalizes bulk collection and enrichment of contact data across third-party sites.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The script is explicitly designed to scrape emails, phone numbers, and social media profiles from Google Maps-derived business websites without any built-in notice, consent check, or disclosure mechanism. In this skill context, the lack of transparency materially increases privacy, compliance, and misuse risk because it enables bulk lead-generation style collection of contact data from third-party sites with no user-facing guardrails.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The script emits JavaScript that scrapes Google Maps place details along with browsing-context data such as the current URL, derived place ID, coordinates, and contact fields, but provides no user-facing disclosure, consent gate, or data-minimization controls. In the context of a lead-generation skill explicitly designed to extract business contacts and website links for further harvesting, this increases privacy and compliance risk because it enables silent collection of structured data from a live browsing session.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal

Static analysis

No suspicious patterns detected.