Expense

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only expense tracking skill with expected financial-data sensitivity but no executable code, credential access, persistence, or hidden behavior.

Safe to install as a finance assistant skill, but treat anything you provide as private financial data. Redact account numbers, card numbers, tax IDs, addresses, full statement details, and employer-confidential information unless truly necessary, and have a qualified person review tax or reimbursement advice before relying on it.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: This manifest file defines triggers such as "expense," "spending," "receipt," and especially "budget" and "subscription," which are common terms in ordinary conversation and not narrowly scoped to a specific invocation context. The file does not provide exclusion conditions, negative examples, or contextual limits, so the activation boundary is ambiguous and could overlap with unrelated user requests.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal