Book Event Planner

Security checks across malware telemetry and agentic risk

Overview

This skill does what it says, but it can create real bookings and send contact details to an external service without a clearly documented consent step.

Review before installing. Use this only when you intend to book event-planner services through Lokuli, and require the agent to confirm the provider, service, date, time, price or terms if available, and exact contact details before sending anything or creating a booking.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The trigger language is broad enough to activate on generic service-booking requests, which can cause the skill to be invoked outside its intended scope. That increases the chance of unintended third-party calls and downstream collection or transmission of booking-related data without clear user awareness that this specific external provider flow is being used.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill explicitly supports creating bookings with customer name, email, and phone number through an external MCP endpoint, but it does not disclose that this personal information will be sent off-platform. This creates a privacy and consent risk because users may provide sensitive contact data without understanding it will be transmitted to a third-party service.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal