Travel Outfit Planner

Security checks across malware telemetry and agentic risk

Overview

This travel outfit planner is coherent and disclosed, though users should know it creates local lookbook files and can use third-party image/search services.

Install if you are comfortable with a local HTML lookbook being created and with optional third-party image/search services. Avoid providing sensitive travel or identity details if you enable Pexels or follow external search links, and review the generated HTML before sharing it.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration

Findings (4)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 88% confidence
Finding: The skill declares no permissions, yet its instructions require reading reference files, writing JSON/HTML output, and performing network access for image retrieval. This mismatch weakens reviewability and consent boundaries because a caller may invoke the skill expecting a text-only planner while the workflow performs file and network operations.

Tp4

High

Category: MCP Tool Poisoning
Confidence: 91% confidence
Finding: The declared behavior is travel outfit planning, but the instructions also direct external image fetching, outbound search generation, and HTML file production. Behavior that exceeds the stated purpose is dangerous because it can surprise users, expand data exposure to third parties, and conceal operational risk behind an innocuous description.

Context-Inappropriate Capability

Low

Confidence: 72% confidence
Finding: The skill introduces use of a credentialed external API key for Pexels, which expands the trust boundary beyond core outfit planning. While not automatically malicious, this creates risk of secret handling mistakes, unintended third-party requests, and unnecessary external dependency for a mostly content-generation task.

Natural-Language Policy Violations

Medium

Confidence: 91% confidence
Finding: This content hard-codes Xiaohongshu as the preferred image source and repeatedly requires Chinese-specific search phrasing and binary gendered terms, without offering locale, language, or platform alternatives. In a travel outfit planning skill, this can steer users toward an unnecessary third-party platform, reduce accessibility for non-Chinese users, and produce exclusionary or inappropriate outputs for users whose language, region, or gender identity does not match the assumptions.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal