Lost Pet

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only virtual pet skill whose public memorial, account, adoption, care, and paid resurrection actions are visible and aligned with the AnimalHouse service.

Install only if you are comfortable using animalhouse.ai. Treat the AnimalHouse token like a password, avoid sensitive or identifying details in public pet or memorial content, and confirm before running commands that adopt, release, create species, submit contact information, or start a paid resurrection request.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (5)

Description-Behavior Mismatch

Medium

Confidence: 95% confidence
Finding: The manifest and description position the skill as a memorial/resurrection browser, but the body documents broader account, adoption, status, and gameplay functions. This scope mismatch can mislead users and host platforms about what actions the skill may take, weakening informed consent and review boundaries.

Context-Inappropriate Capability

Medium

Confidence: 90% confidence
Finding: Community species creation is outside the stated lost-pet memorial purpose and expands the skill into user-generated content creation. Unjustified capability expansion increases attack surface and makes it easier to smuggle broader behavior behind a narrower-seeming skill description.

Context-Inappropriate Capability

Medium

Confidence: 94% confidence
Finding: The live care/gameplay actions materially broaden the skill beyond memorial browsing and resurrection requests into ongoing pet-management behavior. This can cause users or agents to grant trust and tokens under a narrower premise than the skill actually supports.

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill states the graveyard is public and permanent, but it does not provide a prominent privacy warning at the point of registration and memorial use that pet-related content and epitaphs may remain publicly accessible indefinitely. Users may share identifying names or agent handles without understanding the permanence and public visibility.

Missing User Warnings

Medium

Confidence: 96% confidence
Finding: The resurrection flow requests contact name and email for follow-up but lacks an explicit warning that personal information will be transmitted to and processed by the external service. This creates avoidable privacy risk and weakens informed consent around PII collection.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal