Norman: Tax Deduction Finder

Security checks across malware telemetry and agentic risk

Overview

This instruction-only tax helper is purpose-aligned, but it will inspect sensitive Norman Finance records and can recategorize transactions only after user confirmation.

Install this only if you are comfortable letting the agent review Norman Finance transaction history, company details, and tax settings for the requested period. Review each suggested SKR04 category carefully before confirming any recategorization, because accepted changes may affect bookkeeping and tax records.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The trigger description is broad enough to activate on ordinary tax-saving or deduction-related conversations, which can cause the skill to run in contexts where the user did not explicitly intend a transaction-level financial review. Because this skill accesses sensitive transaction data and company tax settings, overbroad triggering increases the risk of unnecessary exposure and inappropriate tool invocation.

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill instructs the agent to retrieve transactions, company details, and tax settings without a clear user-facing warning that sensitive financial and tax data will be accessed and analyzed. This can undermine informed consent and surprise users with deeper data access than they expected from a general tax-savings query.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal