Jinko

Security checks across malware telemetry and agentic risk

Overview

The skill appears to support real travel booking flows that collect personal traveler details, but its safety and confirmation steps are not clearly scoped enough.

Review this skill before installing. Use it only if you are comfortable sharing traveler identity and contact details with the booking provider, and require the agent to show the exact trip, traveler fields, price, and checkout destination before running booking commands or opening payment flows.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The skill guides the agent through collecting travelers' names, dates of birth, gender, contact details, and generating a checkout URL for a real purchase, but it provides no guardrails around consent, data minimization, masking, retention, or user confirmation before transactional actions. In an agent context, this increases the risk of unnecessary exposure of personal data and accidental progression into booking/payment flows without explicit user acknowledgement.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal