Nummo

Security checks across malware telemetry and agentic risk

Overview

Nummo has a clear finance-assistant purpose, but it combines Plaid-linked bank data access with an unverified remote shell installer.

Install only if you trust Nummo with local CLI execution and Plaid-linked financial data. Before running the installer, inspect the script or prefer a signed package with checksum verification; after connecting accounts, approve each financial query explicitly and avoid `--all` history unless needed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: The documentation instructs users to execute a remote installer script directly with `sh`, without any warning, integrity verification, or opportunity to inspect the script first. This is dangerous because any compromise of the hosting domain, CDN, TLS termination, or installer content would result in immediate arbitrary code execution on the user's system.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal