Umeå Lunch

Security checks across malware telemetry and agentic risk

Overview

This skill appears to simply fetch public lunch menus for Umeå from a disclosed website.

Install this if you want live Umeå lunch menu lookup. Be aware that using it contacts umealunchguide.se and displays data from that site; there is limited external provenance metadata, but the included code is small and purpose-aligned.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 93% confidence
Finding: The skill explicitly instructs the agent to run a Python script that fetches live data from an external website, which implies network access, yet no permissions are declared. Undeclared network capability weakens the trust boundary and reviewability of the skill, because users and the host system are not clearly informed that external requests will occur.

Vague Triggers

Medium

Confidence: 76% confidence
Finding: The description uses broad trigger terms like 'lunch', 'restaurants', and 'food in Umeå', which can cause the skill to activate in ordinary conversation more often than necessary. Over-broad activation increases the chance of unintended external data fetches or tool execution, even if the skill's core function is benign.

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal