Ai Intelligent Expense Reimbursement

Security checks across malware telemetry and agentic risk

Overview

The skill is an expense-automation guide that appears purpose-aligned, but it asks users to run unreviewed external code for a workflow that may approve reimbursements and send payments without documenting financial controls.

Review the external GitHub repository and dependencies before running this skill. Do not connect it to production finance systems or payment accounts until payment execution is disabled by default or protected by explicit human approval, least-privilege credentials, amount/account limits, audit logging, and reconciliation or reversal procedures.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill advertises and enables '自动打款（财务集成）' but does not warn users that it may trigger real payment execution or require strong approval controls. In a financial workflow context, missing this disclosure can lead to unintended fund transfers, over-trust in automation, and deployment without adequate human review or authorization safeguards.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal