Shopping Autopilot

Security checks across malware telemetry and agentic risk

Overview

This skill is not malicious, but it can steer an agent toward grocery purchases and delivery bookings without clear approval safeguards.

Review before installing. Use it only if you are comfortable with an agent operating inside grocery accounts, and require it to show the store, cart contents, substitutions, total cost, delivery address, delivery slot, and payment impact before you give explicit final approval.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The trigger phrase "Help me order groceries for this week" is broad, natural language that overlaps with ordinary conversation, making accidental or unintended invocation more likely. In a skill that can autonomously add items, book delivery slots, and confirm orders, broad activation materially increases the chance of unauthorized purchasing actions.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill advertises autonomous grocery ordering and delivery slot booking but does not warn users that it may perform real-world transactions on their behalf. In this context, the omission is dangerous because users may not realize that casual use could lead to purchases, scheduling changes, or confirmed orders with financial and privacy consequences.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal