Book Art Lessons

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward art-lesson booking skill that uses Lokuli and may send contact details only as part of making a booking.

Before installing, be comfortable using Lokuli for art-lesson searches and bookings. The agent should confirm the provider, time slot, and contact details before sending a booking request.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The trigger language is broad enough to activate on generic art-lesson related requests without clearly constraining when this skill should run. Overbroad invocation scope can cause unintended tool use, including unnecessary searches or bookings through an external MCP service when the user did not explicitly consent to using that provider.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill handles booking flows that transmit personal data such as name, email, and phone number to an external endpoint, but it provides no user-facing disclosure or consent warning. This creates a privacy risk because users may unknowingly share sensitive contact information with a third-party service and the agent may collect more data than the user expects.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal