发票查验(invoice-verify) - 慧穗云

Security checks across malware telemetry and agentic risk

Overview

This skill appears to do its stated job of verifying invoices through Huisuiyun, but users should understand that invoice data is sent to that external provider.

Install only if you are authorized to submit the relevant invoice information to Huisuiyun. Keep HSY_AK and HSY_SK private, leave HSY_API_URL on the official Huisuiyun endpoint unless you fully trust another endpoint, and set storeFlag according to whether provider-side storage is acceptable.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The documentation tells the agent to submit invoice details to a third-party service, and the example response includes sensitive business and tax data, but there is no prominent warning that user-provided invoice contents will leave the local environment. Invoice metadata can contain personal or confidential commercial information, so silent transmission to an external provider creates a real data-disclosure risk.

Missing User Warnings

Medium

Confidence: 84% confidence
Finding: The skill sends invoice contents to a third-party external service for verification, which may include sensitive financial and tax-related information. In this skill context, that transmission is functionally necessary, but the lack of explicit disclosure/consent increases privacy and compliance risk because users may not realize their data leaves the local environment.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal