Invoice Chaser Pro

Security checks across malware telemetry and agentic risk

Overview

This skill appears to draft invoice reminder emails, but it requests local file read/write access without explaining why or limiting how it should be used.

Review before installing. It is likely usable as a text-only invoice reminder drafting aid, but grant file access only when you explicitly want it to read a specific invoice file or save a draft to a specific location; avoid letting it persist sensitive billing details unnecessarily and review every generated email before sending.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 88% confidence
Finding: The trigger list contains broad terms such as "invoice," "overdue," "past due," and "late payment" that are common in normal business conversations. This can cause the skill to activate outside narrowly intended contexts, increasing the chance that users are funneled into collection-style content when they were only discussing billing generally.

Missing User Warnings

Low

Confidence: 76% confidence
Finding: The skill declares read_file and write_file capabilities, but the description and user-facing instructions do not explain that generated reminder content or invoice-related details may be written to disk. In a billing context, this content can include client names, balances, invoice numbers, and payment links, so silent file writes create avoidable privacy and data-handling risk.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal