CTG Bus

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a straightforward CTG Bus schedule lookup tool that contacts the disclosed hkctgbus API and does not show hidden persistence, credential access, or destructive behavior.

Install this if you are comfortable with the skill contacting hkctgbus to look up bus schedules. Use specific CTG Bus wording when invoking it, and avoid sending travel details you do not want shared with the third-party bus API.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 84% confidence
Finding: The trigger description includes several broad keywords such as "中旅", "ctg", and "跨境巴士", which can cause the skill to activate on loosely related travel queries rather than only explicit requests for this specific service. In an agent environment, over-broad invocation can lead to unintended external queries, incorrect tool selection, and disclosure of user travel intent to a third-party API without sufficiently specific user intent.

Missing User Warnings

Low

Confidence: 75% confidence
Finding: The documentation states that the script queries the external hkctgbus API, but it does not specify any user-facing notice or consent flow before network access occurs. While the queried data is not highly sensitive by default, user-supplied travel details such as route, station, and date may still be transmitted off-platform unexpectedly, creating a privacy and transparency issue.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal