Security audit
Frankfurter API
Security checks across malware telemetry and agentic risk
Overview
This is a documentation-only skill for using the Frankfurter exchange-rate API, with no executable code, credential handling, persistence, or unrelated behavior.
Installers should be aware that the skill may direct an agent to call the public Frankfurter API for currency data. Treat the returned rates as daily reference rates rather than live trading prices, and check the returned date and provider if using the data for official or compliance-sensitive work.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
