Security audit

Subscription Audit

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only subscription audit skill that is purpose-aligned, but users should treat pasted bank or card data as sensitive and understand it may pass through their configured AI provider.

Before using this skill, assume any pasted transaction CSV is sensitive financial data. Redact unnecessary fields, prefer the manual-list option if possible, and check the privacy and retention terms of your configured AI provider. Use a fully local provider such as Ollama if you need offline processing. Evaluate the external Gumroad tracker separately before purchasing or uploading data to it.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration

Findings (3)

Intent-Code Divergence

Medium

Confidence: 97% confidence
Finding: The privacy note is internally contradictory: it says data is not transmitted to any third party, then immediately says the user's financial data passes through the configured AI provider. For a finance-focused skill handling bank/card CSVs, this can materially mislead users about where sensitive data goes and their privacy exposure.

Context-Inappropriate Capability

Medium

Confidence: 86% confidence
Finding: The skill offers ongoing tracking and alerts even though the documented capability is a one-time analysis of pasted CSVs or manual lists, with no described storage, scheduler, or monitoring mechanism. In a sensitive financial context, this can create false expectations that the system will watch for new charges, causing users to rely on a protection that does not actually exist.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill explicitly encourages users to paste bank or card transaction CSVs, which are highly sensitive financial records, but the warning about provider exposure appears later in a separate Privacy section rather than at the point of collection. Users may share data without realizing it will be processed by a third-party model provider, creating a meaningful risk of unintended disclosure of transaction history and merchant/payment details.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal