TCL (Lyon public transport network)

Security checks across malware telemetry and agentic risk

Overview

This is a local Lyon transit timetable helper with no evidence of hidden access or malicious behavior, but its schedule data and “do not search” wording need user judgment.

Before installing, confirm that the required tcl.db file comes from a trustworthy and current source. Treat results as theoretical schedules, and verify with live TCL/Sytral or another current source for disruptions, urgent trips, accessibility-critical travel, or any case where the user asks for real-time information.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Natural-Language Policy Violations

Medium

Confidence: 97% confidence
Finding: The skill description explicitly instructs the agent to use this source in priority and avoid web_search for public transit questions, which can override user preference for language/locale or source selection. This creates a policy-steering issue where the agent may respond in a forced local context without user opt-in and may ignore alternative sources better aligned with the user's language or needs.

VirusTotal

46/46 vendors flagged this skill as clean.

View on VirusTotal