Security audit

Rental Advisor

Security checks across malware telemetry and agentic risk

Overview

This rental-advice skill is mostly coherent, but it needs review because it permits broad shell-based web scraping and loosely scoped retention of rent/profile information.

Review before installing. Use it only with trusted, scoped search tools; do not allow shell scraping or unknown local helper scripts. Avoid letting it save rent, location, budget, or contract details to a profile or future alert system unless you explicitly want that. The artifacts do not show credential theft, destructive actions, or intentional exfiltration.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Context-Inappropriate Capability

Medium

Confidence: 94% confidence
Finding: The skill explicitly authorizes `exec + curl` to scrape public pages, which expands a rental-advice skill into arbitrary command execution territory. Even if intended for web retrieval, shell-capable tooling materially increases the risk of command injection, unsafe external access, and misuse beyond the stated business purpose, especially when downstream inputs may be influenced by users or untrusted content.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.