Back to skill

Security audit

Book Blowout

Security checks across malware telemetry and agentic risk

Overview

This is a plain booking skill for Lokuli blowout appointments, with the main user risk being that booking sends contact details to an external service.

Install only if you trust Lokuli for booking. Before use, have the agent confirm the provider, service, time, price or terms if shown, and exactly what name, email, phone number, and location or ZIP code will be sent before it creates a booking.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
92% confidence
Finding
The trigger scope is broad enough to activate on general blowout-related requests without clear constraints on location, booking intent, or confirmation boundaries. Overbroad routing can cause the agent to invoke an external booking skill in situations where the user only wanted information, increasing the chance of unintended third-party data sharing or transactional actions.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill documents collection and transmission of personal contact data such as name, email, and phone number to an external MCP endpoint, but provides no user-facing notice or consent requirement. This creates privacy and compliance risk because users may not realize their personal data will be sent to a third-party service when the skill is triggered.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.