银行流水财务分析

Security checks across malware telemetry and agentic risk

Overview

This skill appears to do local bank-statement analysis as advertised, but users should treat its inputs and generated reports as confidential financial records.

Install only if you are comfortable processing bank-statement data locally with this package. Keep input files and generated Markdown reports out of public repositories, shared folders, and broad sync locations; redact account identifiers or names before sharing reports. Prefer running it on trusted CSV files or update the xlsx dependency before opening spreadsheets from unknown sources.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (6)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill is designed to process highly sensitive bank transaction data, counterparties, company names, and identifiers, yet it provides no confidentiality warning, data minimization guidance, or handling constraints. In this context, users may unknowingly expose regulated financial or personally identifiable business data to the tool, increasing the risk of improper disclosure, unsafe storage, or unauthorized downstream sharing.

Missing User Warnings

Medium

Confidence: 84% confidence
Finding: The skill processes highly sensitive bank transaction data and automatically writes a plaintext markdown report to disk without any privacy warning, output-path confirmation, masking, or permission hardening. In shared workstations, synced folders, CI runners, or multi-user environments, this can cause unintended disclosure of confidential financial information even without an external attacker.

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The guide instructs users to process bank transaction records containing highly sensitive financial and personal data, but it provides no warning about confidentiality, access control, redaction, retention, or safe sharing practices. In this context, omission of privacy and data-handling guidance increases the risk of accidental exposure, improper storage, or inclusion of sensitive account details in generated reports.

Unpinned Dependencies

Low

Category: Supply Chain
Content: "start": "node index.js" }, "dependencies": { "iconv-lite": "^0.7.2", "xlsx": "^0.18.5" }, "keywords": [
Confidence: 89% confidence
Finding: "iconv-lite": "^0.7.2"

Unpinned Dependencies

Low

Category: Supply Chain
Content: }, "dependencies": { "iconv-lite": "^0.7.2", "xlsx": "^0.18.5" }, "keywords": [ "财务",
Confidence: 96% confidence
Finding: "xlsx": "^0.18.5"

Known Vulnerable Dependency: xlsx==0.18.5 — 2 advisory(ies): CVE-2023-30533 (Prototype Pollution in sheetJS); CVE-2024-22363 (SheetJS Regular Expression Denial of Service (ReDoS))

High

Category: Supply Chain
Confidence: 99% confidence
Finding: xlsx==0.18.5

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal