Cron Health Monitor
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed Booking.com automation skill, but it needs review because it can use live account credentials to message guests and change rates through external code outside the scanned package.
Install only after reviewing and trusting the external booking-extranet-bot code. Use it only if you are comfortable giving it Booking.com partner credentials, optional 2FA automation, and a persistent browser session; require manual review before sending guest messages or changing rates, protect the .env and .chrome-data directories, and confirm this automation is allowed for your Booking.com account.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
61/61 vendors flagged this skill as clean.