Gumroad

Security checks across malware telemetry and agentic risk

Overview

The skill appears to provide a payment refund capability, but the refund action is high-impact and not clearly bounded by confirmation or authorization safeguards.

Install only if you intend the agent to help with refunds. Before use, require explicit confirmation for every refund, verify the exact sale, customer, amount, reason, and business authorization, and prefer the least-privileged account scope that can perform only the needed payment actions.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 84% confidence
Finding: This skill exposes a destructive financial action that can reverse funds, but the documentation provides no safety warning, confirmation guidance, or constraints around when refunds should be issued. In an agentic context, that omission increases the chance of accidental or unauthorized refunds because the action is presented as routine to use once the schema is known.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal