ReceiptExtract - OCR, Photo/PDF to CSV

Security checks across malware telemetry and agentic risk

Overview

This skill transparently uploads user-selected receipts to ReceiptExtract for parsing, with privacy considerations users should understand.

Install only if you are comfortable sending receipt images or PDFs to ReceiptExtract. Receipts can contain purchase history, addresses, timestamps, loyalty data, and payment details, so review the provider's privacy and retention terms, use narrow input paths for bulk mode, and keep RECEIPTEXTRACT_API_TOKEN in an environment variable or secret manager.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (3)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill instructs the agent to upload receipt images/PDFs to a third-party API, but it does not require an explicit user-facing consent or privacy warning before transmitting potentially sensitive financial and personal data off-device. Receipts can contain names, merchant locations, partial payment details, loyalty data, and itemized purchases, so silent exfiltration to an external service creates a meaningful privacy and compliance risk.

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The documentation instructs users to send receipt files and bearer-token-authenticated requests to a third-party endpoint without any warning about data disclosure, retention, or sensitivity of receipt contents. Receipts often contain personal and financial data, so omitting explicit privacy and security guidance can lead to unintentional exfiltration of sensitive documents and credential misuse in downstream integrations.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The script uploads entire local receipt files to a third-party service, but it provides no explicit user-facing notice, confirmation, or consent step at the point of transmission. Receipts commonly contain sensitive financial and personal data, so silent exfiltration to an external API can violate user expectations, privacy requirements, or data-handling policies even if the behavior is part of the advertised functionality.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal