Trip Save

Security checks across malware telemetry and agentic risk

Overview

This travel-saving skill appears purpose-aligned, but users should know it may fetch saved links and retain trip notes or URLs in memory.

Install if you want an assistant to save travel links and notes for later. Avoid saving sensitive personal itineraries, private booking links, or URLs containing tokens unless you are comfortable with them being stored in memory, and phrase requests clearly as travel saves.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The activation criteria are broad enough to match common conversational phrases like 'save this' or 'adding X to my list', which can cause unintended skill execution. In a skill that fetches external URLs and writes to memory, accidental activation can lead to unintentional network access and persistent storage of user content the user did not clearly intend to save.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill explicitly stores user-provided URLs or text in memory, including source material and dates, but does not warn the user that this data may persist. Because forwarded links and free text can contain personal preferences, sensitive travel interests, or identifying information, silent retention increases privacy risk and can surprise users who expected a transient action.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal