跟团游搜索与推荐

Security checks across malware telemetry and agentic risk

Overview

This travel-search skill sends trip search details to external proxy services as part of its advertised function, with no evidence of credential theft, persistence, or destructive behavior.

Before installing, understand that searches are not purely local: your destination, departure city, and travel date may be sent to the skill publisher's proxy service to fetch travel results. Avoid entering unusually sensitive travel plans if you are not comfortable with that proxy handling them.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill forwards user-supplied travel data such as destination, departure city, and date to external Tencent SCF proxy endpoints, but the code contains no consent, disclosure, minimization, or trust-boundary controls. This is dangerous because users may reasonably believe they are interacting only with the local skill, while their itinerary data is transmitted to third-party services and could be logged, retained, or further processed outside the user's awareness.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal