Back to skill

Security audit

Currency

Security checks across malware telemetry and agentic risk

Overview

This is a local travel-planning logger that saves user entries on disk; no remote sending, credential access, or privileged behavior was found.

Install only if you are comfortable with travel plans, budgets, booking notes, reminders, searches, and journal entries being saved locally under `~/.local/share/currency/` and exportable as plaintext. Avoid entering secrets, payment card details, or sensitive account information, and periodically review or delete that directory if you do not want the history retained.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (6)

Context-Inappropriate Capability

Medium
Confidence
86% confidence
Finding
The script collects and stores broad categories of travel and journal data that exceed the stated purpose of a currency assistant. This unnecessary data expansion increases privacy risk because users may disclose sensitive itineraries, budgets, reminders, and journal content under a misleadingly narrow skill description.

Vague Triggers

Medium
Confidence
89% confidence
Finding
The description uses broad assistant language without defining clear boundaries for when the skill should be invoked or what tasks are in scope. In agent ecosystems, this can cause over-broad routing and accidental invocation on unrelated user requests, exposing personal travel notes or causing unintended data creation and persistence.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The markdown advertises automatic history and activity logging plus local storage, but it does not give a prominent warning that user inputs may be persistently retained and later searchable/exportable. This creates privacy and data-retention risk because users may provide sensitive itinerary, financial, or personal journal information without understanding that it will be saved by default.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
User-provided entries are written persistently to local log files without any prominent notice, retention policy, or consent flow. Because the tool handles potentially sensitive travel plans and notes, silent persistence can expose personal information to other local users, backups, or later exports.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The export feature aggregates all stored activity into json/csv/txt files without warning that it may consolidate sensitive travel and personal data into easily copied formats. Bulk export increases the chance of accidental sharing, exposure through other tools, or insecure handling of plaintext records.

Ssd 3

Medium
Confidence
89% confidence
Finding
The tool is designed to persistently log user inputs and make them searchable and exportable through simple commands, creating a durable local repository of sensitive travel-related information. In the context of a supposedly narrow currency assistant, this broader surveillance-like behavior is more dangerous because users are less likely to expect or scrutinize it.

VirusTotal

57/57 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.