Flight Check In

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only travel check-in skill with some overbroad wording, but no code, install steps, credentials, persistence, or automatic actions.

Reasonable to install as a lightweight guidance skill. Treat live flight status, seat availability, boarding pass, itinerary, baggage, and delay-certificate information as advisory unless confirmed through the airline, airport, or booking provider, and avoid sharing booking codes or personal travel documents unless necessary.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Description-Behavior Mismatch

Medium

Confidence: 88% confidence
Finding: The documented capabilities expand well beyond flight check-in into broad travel search, destination guidance, weather, policy, and itinerary functions. This can cause the agent to be invoked for out-of-scope requests and expose users to incorrect routing, overbroad data access, or unintended tool use based on a misleading skill contract.

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The example trigger phrases are generic enough to match many ordinary help requests, which increases the chance this skill is selected outside its intended domain. Overbroad activation can lead to misrouting, user confusion, and accidental handling of requests that should be served by other, more appropriate skills.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal