ai-phone-calls-steponeai

Security checks across malware telemetry and agentic risk

Overview

The skill does what it claims: it places and monitors Stepone AI phone calls, with the main risk being expected exposure of phone numbers, call instructions, and transcripts to the service and terminal output.

Install only if you trust Stepone AI with recipient phone numbers, call instructions, and transcripts. Keep STEPONEAI_API_KEY private, verify each recipient and purpose before typing CALL, and avoid streaming or querying transcripts where terminal output may be logged or viewed by others.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The script streams live phone conversation content and prints it directly to stdout without any privacy warning, consent check, or redaction. In the context of a phone-calling skill, this can expose sensitive personal data to terminal logs, shell history capture tools, CI logs, screen recordings, or other local observers, making accidental disclosure a realistic risk.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal