Kabuzz

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed marketplace connector that can spend real money, so it is not risk-free but its sensitive capabilities match its stated purpose.

Install only if you intentionally want an agent to transact on Kabuzz. Set low spending limits, require human approval in your agent workflow for purchases, offer acceptance, shipping-label purchases, and payment-method changes, always use maxPrice and idempotencyKey, protect the API key, and consider pinning or reviewing the npm MCP package before using it with live payment access.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill explicitly advertises autonomous purchasing via 'purchase_listing → buy it (off-session, no UI needed)', but does not present a prominent warning at the point of use that real charges can occur without an interactive confirmation. In a marketplace/payment context, this increases the risk of unintended purchases, social-engineering-driven transactions, or unsafe delegation by users who may not fully appreciate that the agent can spend money autonomously.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal