机票捡漏 · 多日比价神器/Smart Flight Deal Finder

Security checks across malware telemetry and agentic risk

Overview

This flight-comparison skill appears coherent and purpose-aligned, with disclosed local preference and history storage but no evidence of hidden execution, exfiltration, or destructive behavior.

Safe to install if you are comfortable with a flight assistant keeping local route preferences and travel-selection history. Consider periodically clearing assets/history.json and assets/preferences.json if you do not want long-term travel patterns retained, and verify flyai-cli/API-key setup before use.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill persists user preferences and travel history but does not present a clear upfront notice or consent flow before storing behavioral data. This creates a privacy risk because route history, persona tags, and preference signals can reveal sensitive travel patterns and personal characteristics over time.

Missing User Warnings

Medium

Confidence: 97% confidence
Finding: The history schema stores detailed travel and behavioral metadata such as persona tags, airports, times, prices, outcomes, and overridden constraints, which can profile the user extensively. Without an upfront warning, retention limits, or consent controls, this becomes a meaningful privacy and surveillance risk if accessed by other components or exposed accidentally.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal