Food Order

Security checks across malware telemetry and agentic risk

Overview

This Foodora ordering skill is purpose-aligned and clearly requires confirmation before placing orders, though users should notice its broad trigger and browser-session login option.

Before installing, make sure you trust the ordercli project and are comfortable with it using a Foodora login or Chrome profile session. Use food-specific wording when invoking the skill, review the preview carefully, and only confirm when you truly want the order placed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The trigger phrase "reorder" is generic and likely to match ordinary user requests that are not intended to invoke this Foodora ordering skill. Because this skill can initiate commerce-related actions and access order history, overly broad activation increases the chance of accidental invocation and unintended ordering workflows, even though the skill text includes a confirmation step.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal