Back to skill

Security audit

Airbnb Str Listing Optimizer

Security checks across malware telemetry and agentic risk

Overview

This rental guest-communication skill is mostly purpose-aligned, but it appears to include or encourage sharing real WiFi and physical access details too broadly.

Review and replace any real property access details before installing. Rotate exposed WiFi or fob/access credentials if they were real, and use the skill only with private, confirmed-guest channels for check-in details.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The file includes operational access details such as a live WiFi SSID/password, parking location, unit number, and instructions about a building access fob in broadly readable markdown. Even though presented as example guest communications, these details could enable unauthorized network access, social engineering, stalking, or physical intrusion if reused or mistaken for real credentials.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The prompt explicitly tells the model to include the actual WiFi SSID and password in guest-facing FAQ output. While sharing access details with legitimate guests is normal in this domain, embedding credentials into broadly reusable templates or guidebook content increases the chance of accidental over-disclosure, persistence in message history, or exposure to unintended recipients.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.