Back to skill

Security audit

Lokuli Booking

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward local-service booking skill that uses Lokuli and Stripe for expected booking workflows, with no hidden executable behavior found.

Install this only if you want your agent to use Lokuli for local-service searches and bookings. Before approving any booking, verify the provider, service, time, price, cancellation terms, and contact details, and assume your ZIP code and contact information may be shared with Lokuli, the provider, and Stripe-linked payment flows.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
94% confidence
Finding
The trigger scope is overly broad because it activates on effectively any local service request, increasing the chance the skill is invoked in contexts where the user did not intend to engage a third-party booking flow. In this skill, that risk is amplified because invocation can lead to collection of personal contact data and redirection to an external payment flow.

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill collects name, email, phone number, and facilitates a Stripe checkout link, but it does not clearly warn users that this information will be shared with an external service provider and payment processor. That creates a privacy and consent gap, especially because users may not realize they are leaving the host environment and transmitting PII to third parties.

VirusTotal

62/62 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.