Price Compare

Security checks across malware telemetry and agentic risk

Overview

This is a coherent shopping price-comparison helper that searches retailer sites, with only minor scope and accuracy caveats.

Install this if you want a US-focused shopping comparison assistant. Be aware it may browse multiple retailer pages, and you should verify final price, shipping, taxes, seller authenticity, warranty, and availability before buying.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The trigger description is broad enough to activate on loosely related shopping or recommendation requests, which can cause the skill to run outside its intended scope. In an agent setting, over-broad invocation can lead to inappropriate tool use, unnecessary browsing, and user steering into a retailer-comparison workflow when the user did not explicitly ask for it.

VirusTotal

49/49 vendors flagged this skill as clean.

View on VirusTotal