Security audit

Airline Info To Website

Security checks across malware telemetry and agentic risk

Overview

The skill appears to do the advertised airline data scraping work, but it tells users to run it with broad permission bypass that is much more powerful than the task needs.

Review before installing. Use it only in a dedicated project folder, avoid the suggested permission-bypass startup and persistent `~/.claude/settings.json` changes, install dependencies in an isolated environment, and run deduplication with `--dry-run` before allowing deletions.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Context-Inappropriate Capability

Medium

Confidence: 98% confidence
Finding: The skill instructs users to run with `--dangerously-skip-permissions --permission-mode bypassPermissions`, which disables safety checks far beyond what a scraping and local classification workflow needs. If the referenced scripts are compromised or behave unexpectedly, they could modify arbitrary files, exfiltrate data, or perform other unintended actions without user approval.

Missing User Warnings

High

Confidence: 99% confidence
Finding: The documentation combines dangerous permission bypass with broad `Read`, `Edit`, `Write`, and `MultiEdit` access, but does not warn users that this can affect unrelated files or system integrity. In practice, this invites execution of the skill with near-unrestricted filesystem authority, making any mistake or malicious script far more damaging.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal