Savings

Security checks across malware telemetry and agentic risk

Overview

This savings-planning skill is instruction-only and may involve personal financial details, but it does not ask for bank access, credentials, transactions, scripts, or external data sharing.

Reasonable to install if you want savings-planning help. Share only the financial details needed for the task, avoid bank logins or account numbers, and independently verify current rates or financial-product claims before moving money.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The description is broad enough to trigger on many generic requests about saving money, which can cause the agent to invoke this skill outside a clearly intended context. While the content is not overtly harmful, over-broad routing can crowd out more appropriate skills, lead to unsolicited financial guidance, and increase exposure of personal financial context to a skill the user did not explicitly request.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal