AR Collections Agent

Security checks across malware telemetry and agentic risk

Overview

This is a finance workflow drafting and analysis skill with sensitive AR data handling, but its capabilities are disclosed, instruction-only, and gated by approval for higher-impact actions.

Before installing, replace the hard-coded approver name with your organization's authorized reviewer, use read-only QBO access unless write access is deliberately granted, review every collection email before sending, and delete any persisted payment tracker when it is no longer needed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Natural-Language Policy Violations

Low

Confidence: 83% confidence
Finding: The instruction 'Never send without Irfan's approval' hard-codes a specific person's approval into the skill behavior. This is a natural-language policy concern because it imposes a fixed organizational dependency rather than offering a user-selected or role-based approval path, which can be problematic in broader deployments.

Autonomous Decision Making

Medium

Category: Excessive Agency
Content: --- name: ar-collections-agent description: Accounts Receivable (AR) collections workflow automation for accounting firms and finance teams. Use when you need to: (1) identify overdue invoices and aged AR buckets (30/60/90/120+ days), (2) draft escalating collection emails or call scripts, (3) generate AR aging reports and DSO calculations, (4) prioritize collection targets by balance and risk, (5) track payment promises and follow-up schedules, (6) calculate bad debt reserves or write-off recommendations, or (7) produce client-ready AR health dashboards. Works with QBO exports, CSV invoice data, or direct QBO API. NOT for: initiating legal action or filing liens (escalate to attorney), sending external emails without approval, accessing client QBO accounts without explicit write authorization, or PTIN-backed tax services. --- # AR Collections Agent
Confidence: 75% confidence
Finding: without approval

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal