Book Locksmith

Security checks across malware telemetry and agentic risk

Overview

This locksmith booking skill is coherent, but it can send contact details and create a real booking through a third-party service without clear confirmation or consent safeguards.

Review before installing. Use this skill only when you intentionally want locksmith search or booking through Lokuli, and require confirmation before create_booking, including the provider, service, time, expected cost, cancellation terms, and the exact name, email, and phone number that will be sent.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 93% confidence
Finding: The trigger language is broad enough to activate on general locksmith-related requests without clearly limiting when booking actions should be proposed or executed. That increases the chance of unintended tool use, especially for users who are only asking for information, advice, pricing, or safety guidance rather than consenting to search or booking through a third-party service.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The booking flow includes collection and transmission of personal data such as name, email, and phone number to an external MCP endpoint, but the skill does not instruct the agent to warn the user or obtain explicit consent first. This creates privacy and compliance risk because sensitive contact information may be shared with a third party unexpectedly or without informed approval.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal