Expense Tracker Daily

Security checks across malware telemetry and agentic risk

Overview

This is a local expense-tracking skill that stores user-entered spending records on the device and shows no network, credential, or hidden behavior.

Reasonable to install if you want a local JSON-based expense tracker. Be aware that expense descriptions may contain sensitive personal financial details, confirm delete requests, and note that the actual script path is ~/.qclaw/workspace/expense-tracker-data/expenses.json.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 95% confidence
Finding: The skill instructs the agent to read and write local files and persist data under the user's home directory, but it does not declare those permissions. This creates a transparency and consent problem: users or the platform may not realize the skill can modify local state, which increases risk if the skill is triggered unexpectedly or abused.

Vague Triggers

Medium

Confidence: 84% confidence
Finding: The trigger keywords are broad everyday phrases such as spending and bills, which can cause the skill to activate on casual conversation rather than clear user intent to manage finances. Because the skill can write records and delete entries via its script, accidental activation could result in unwanted local data modification.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal