Expenses

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward local expense-tracking skill, with the main risk being that it can save sensitive spending records and receipts on your computer.

Install only if you are comfortable keeping expense logs and receipt images in ~/expenses/. Ask the agent to confirm before creating files or saving entries, and avoid storing unnecessary card numbers, bank account details, or highly sensitive personal information.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The trigger condition 'User mentions spending money → offer to log expense' is broad enough that the skill may activate during ordinary conversation about costs, budgets, or hypothetical spending. This can lead to unintended data collection prompts or workflow hijacking, especially if the agent takes follow-on actions without clear user intent.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: Directing the agent to create '~/expenses/' without prior user confirmation causes a side effect on the local filesystem. Even though the action is low-risk, creating directories automatically can violate user expectations, clutter the system, and normalize unauthorized file operations by the skill.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal