ClawHub

Google Flights

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Google Flights browser helper, with expected privacy caveats around visible page text, location-influenced results, and third-party booking links.

Install only if you are comfortable letting the agent operate Google Flights pages and read visible flight-result text. Prefer giving an explicit departure airport or city, avoid signed-in pages with unrelated personal details, and treat booking links as third-party airline or OTA sites whose prices, terms, and privacy practices may differ.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Low
Confidence
83% confidence
Finding
The skill explicitly instructs the agent to extract and present outbound booking links to third-party providers without requiring a warning that the user is leaving Google Flights and may be routed to OTAs or airline sites with different pricing, terms, and privacy practices. While this is not code execution or direct data exfiltration, it creates a trust and phishing-adjacent risk because users may click unfamiliar booking providers assuming they are still within the trusted workflow.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The walkthrough explicitly recommends `get text body`, which captures all visible page text and may include sensitive travel details, account-linked information, passenger names, loyalty data, or other contextual data present in the session. In a browser-automation skill, broad extraction is riskier because it normalizes over-collection instead of limiting capture to the specific flight results needed for the user task.

Missing User Warnings

Medium
Confidence
85% confidence
Finding
The Explore mode section notes that prices are shown from the user's location but does not warn that origin inference or location-based personalization may expose sensitive location context. In this skill, that omission matters because browser automation may reveal or act on inferred location data without clear user awareness or minimization controls.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal