Service Booking

Security checks across malware telemetry and agentic risk

Overview

This skill does what it claims: helps find and book local services through Lokuli, with user confirmation before real bookings.

Install only if you trust Lokuli for local-service booking. Before approving a booking or opening a payment link, verify the provider, service, price, date, and time, and only share contact details you are comfortable sending to the booking service and provider.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 95% confidence
Finding: The manifest trigger text is overly broad because "or any local service request" can cause this skill to activate for a wide range of ordinary user requests that only loosely relate to booking. In a skill that connects to an external booking/payment ecosystem, over-triggering increases the chance of unintended tool use, unnecessary collection of location/contact data, and confusing handoffs to third-party services.

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The workflow and rules describe collecting name, email, phone, and generating a Stripe checkout link, but they do not warn the user that this information will be transmitted to external providers and a payment processor. This creates a privacy and consent issue because users may provide personal data without clear notice that it leaves the assistant environment.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal