SOLO.ro cli

Security checks across malware telemetry and agentic risk

Overview

This skill appears purpose-aligned for SOLO.ro accounting access, but it deserves review because it installs an unpinned third-party CLI that stores account credentials/session cookies and can upload or delete accounting documents.

Install only if you trust the `rursache/tap/solo-cli` source and are comfortable storing SOLO.ro credentials and session cookies locally. Before using mutating commands, especially upload and queue delete, verify the target account, file, and queue ID manually and avoid letting an agent run those commands without explicit confirmation.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill documents a destructive command (`solo-cli queue delete <ID>`) without any warning that it permanently removes queued accounting documents or any guidance to verify the target ID before deletion. In an agent-skill context, this increases the chance that an LLM or user will execute the command directly from examples, causing unintended data loss in a sensitive accounting workflow.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal