Book Painter

Security checks across malware telemetry and agentic risk

Overview

This skill appears to do what it says: help users search for and book painter services through a disclosed third-party booking endpoint.

Install only if you are comfortable using Lokuli/the connected provider to search and book painter services. Before confirming a booking, make sure you understand that your contact details may be sent to the third-party booking service so the provider can contact you.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 95% confidence
Finding: The manifest trigger phrase is overly broad and can cause the skill to activate for vague or loosely related user requests, increasing the chance that the agent routes users into this booking workflow without clear intent. In a skill that can initiate third-party service searches and bookings, over-triggering creates unnecessary exposure to external data sharing and unintended actions.

Missing User Warnings

High

Confidence: 98% confidence
Finding: The skill collects and transmits personal contact information such as name, email, and phone number to an external MCP endpoint for booking, but it does not warn the user or obtain explicit informed consent before doing so. This is dangerous because users may not realize their PII is being sent to a third party, creating privacy, compliance, and trust risks if the data is mishandled or transmitted unexpectedly.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal