trip-packer
Security checks across malware telemetry and agentic risk
Overview
This skill coherently helps create local travel itinerary JSON and HTML map outputs, with no hidden persistence or credential access found.
Before installing, consider that using the workflow may run `npx trip-packer`; pin or verify the npm package if supply-chain control matters to you. Avoid including highly sensitive travel or hotel details in generated maps if you do not want them exposed through the local HTML or third-party map tile requests.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
66/66 vendors flagged this skill as clean.