Haresh Cart Management
Security checks across malware telemetry and agentic risk
Overview
This is a small instruction-only cart-management skill that uses disclosed local n8n webhooks for expected cart changes.
Install only if you trust the local n8n workflow listening on localhost:5678, because the skill can change cart contents through those webhooks when invoked.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.