获取外卖优惠券(隐藏券、大额券)
Security checks across malware telemetry and agentic risk
Overview
This skill is a narrow coupon-fetching script with quality and disclosure issues, but no evidence of credential theft, persistence, destructive behavior, or hidden local data access.
Install only if you are comfortable running a local Python script that contacts the listed third-party coupon gateway. Treat the platform selector as unreliable in this version, and use an isolated Python environment because dependencies are installed from package managers without pinned versions.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.