Security audit
Global Travel Planner
Security checks across malware telemetry and agentic risk
Overview
The available evidence shows a coherent, disclosed skill with no confirmed malicious behavior or hidden execution.
Install only if you understand the external services or local commands the skill may help operate, and keep any API tokens scoped to the minimum needed. For administrative workflows, review the exact command or action before allowing changes.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
46/46 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
