Security audit

Airbnb Str Listing Optimizer

Security checks across malware telemetry and agentic risk

Overview

This rental guest-communication skill is mostly purpose-aligned, but it appears to include or encourage sharing real WiFi and physical access details too broadly.

Review and replace any real property access details before installing. Rotate exposed WiFi or fob/access credentials if they were real, and use the skill only with private, confirmed-guest channels for check-in details.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: The file includes operational access details such as a live WiFi SSID/password, parking location, unit number, and instructions about a building access fob in broadly readable markdown. Even though presented as example guest communications, these details could enable unauthorized network access, social engineering, stalking, or physical intrusion if reused or mistaken for real credentials.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The prompt explicitly tells the model to include the actual WiFi SSID and password in guest-facing FAQ output. While sharing access details with legitimate guests is normal in this domain, embedding credentials into broadly reusable templates or guidebook content increases the chance of accidental over-disclosure, persistence in message history, or exposure to unintended recipients.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.