Back to skill

Security audit

Lokuli Service Booking

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent local-service booking helper, but users should understand it can share contact details with Lokuli and create payment links after confirmation.

Install only if you trust Lokuli for local-service booking. Before approving any booking or cart, verify the provider, service, time, price, cancellation terms, contact details being shared, and the Stripe checkout destination.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
95% confidence
Finding
The trigger scope is overly broad because it includes 'any local service request,' which can cause the booking skill to activate in situations where the user did not intend to start a transactional workflow. In this context, unintended activation is more dangerous because the skill can collect personal data and initiate real-world bookings and payment flows.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The workflow instructs the agent to collect name, email, and phone before creating a booking, but it does not clearly warn the user that this personal data will be transmitted to an external third-party service. In a real-world services and payments context, missing privacy disclosure increases the risk of uninformed consent and inappropriate sharing of sensitive contact information.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.