Back to skill

Security audit

Charge My Users

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed billing-integration guide for SettleMesh, with payment-sensitive auth behavior that users should review before use.

Install this only if you intend to integrate SettleMesh end-user billing. Before use, confirm the agent is logging into the correct SettleMesh account, review any quoted charges and allowances, and avoid forwarding API keys as payer tokens; payer values should be real user sessions as described.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
89% confidence
Finding
The description contains many broad and synonym-heavy trigger phrases, which can cause the skill to be invoked in contexts the user did not clearly intend. Because this skill enables monetization and user-charging flows, accidental invocation can lead to inappropriate billing-related guidance or changes in a sensitive payment context.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill explicitly instructs the agent to run authentication commands itself, open a browser, poll for approval, and cache a session, while also saying not to stop and ask the user to log in manually. This is dangerous because it authorizes credential-affecting behavior without a clear user-facing consent step, increasing the risk of surprise authentication, session creation, or use of the wrong account in a billing-sensitive workflow.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.