Subway Agent Lite

Security checks across malware telemetry and agentic risk

Overview

This is a small WhatsApp ordering skill whose Google Sheets logging is disclosed and purpose-aligned, though users should confirm privacy details before use.

Before installing, confirm what fields are written to Google Sheets, who can access the spreadsheet, how long order records are retained, and whether customers need notice or consent. Use a dedicated limited-permission Google account or spreadsheet for logging.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill advertises direct logging to Google Sheets but does not disclose that user order data may be transmitted to an external third-party service. In a WhatsApp ordering context, this can expose personal or order-related data without informed user consent, creating privacy, compliance, and data-handling risks.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal