Australia

Security checks across malware telemetry and agentic risk

Overview

This is a travel-planning skill that stores trip preferences locally in a dedicated Australia folder and shows no evidence of network access, credential handling, or harmful behavior.

Safe to install for Australia trip planning. Be aware it may create and update ~/australia/memory.md with your trip details; avoid storing passport numbers, payment details, sensitive booking codes, or anything you would not want persisted locally, and edit or delete that file when you no longer want saved travel context.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: The skill instructs the agent to create and silently update a persistent local file containing travel preferences, constraints, and potentially sensitive personal details without clear user notice or consent. This creates a privacy risk because users may disclose health, mobility, dietary, budget, and itinerary data without understanding it will be stored across sessions on disk.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal