cpef-psbc

Security checks across malware telemetry and agentic risk

Overview

This skill appears to target real banking account access and payment approval, but it does not define safeguards for credentials or payment confirmation.

Only install or use this with a verified, trusted banking integration and least-privilege test credentials. Do not connect it to real bank accounts unless every payment action requires separate human review and confirmation, credentials are stored securely, and limits/sandbox boundaries are clearly defined.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill explicitly advertises banking capabilities including balance inquiry, transaction detail lookup, and payment review/execution, but provides no warning, guardrails, authorization expectations, or confirmation requirements for high-impact financial actions. In an agent setting, exposing payment-related operations without prominent safety constraints increases the risk of unauthorized transfers, misuse of sensitive account data, or accidental execution of real financial operations.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal