Seoul Subway
Security checks across malware telemetry and agentic risk
Overview
This skill is a disclosed Seoul Subway lookup assistant that uses an external proxy for transit data and does not include executable install code or hidden data access.
This appears safe for normal subway lookups. Before installing, understand that the hosted proxy can receive the station names, route searches, IP address, and User-Agent associated with your requests. Use session-only permission unless you trust the proxy and plan to use it regularly.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.