Book Notary

Security checks across malware telemetry and agentic risk

Overview

This skill appears to do what it claims: help users search for and book notary services through Lokuli, with expected contact details needed for booking.

Before installing, understand that using the booking action may send appointment details and your name, email, and phone number to Lokuli. Use it for explicit notary search or booking requests, and confirm all details before creating an appointment.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The manifest description uses broad trigger language such as 'any notary service request,' which can cause the skill to activate for a wide range of user intents without clear confirmation. Because this skill can lead to booking actions and transmission of personal data to an external MCP endpoint, overbroad invocation increases the risk of unintended use, mistaken routing, and premature collection of sensitive information.

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: The skill documents collection and transmission of customerName, customerEmail, and customerPhone to a third-party booking endpoint without any user-facing warning, consent step, or disclosure of external sharing. This creates privacy and trust risks because users may not realize their personal contact information is being sent off-platform as part of the booking flow.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal