ClawHub

Lemlist

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Lemlist integration that needs a Maton API key and can change outreach data, but its access and approval requirements are visible and aligned with its purpose.

Install only if you trust Maton to broker access to your Lemlist account. Keep MATON_API_KEY private, choose the correct Maton connection when multiple accounts exist, and approve write/delete actions only after checking the exact campaign, lead email, schedule, unsubscribe, or connection being changed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Description-Behavior Mismatch

Medium
Confidence
94% confidence
Finding
The manifest narrows the skill purpose to campaigns, leads, activities, schedules, and unsubscribes, but the documented API also exposes broader team/account and company data. This mismatch can cause users or orchestrators to invoke the skill under a false assumption of limited scope, increasing the chance of unintended access to more sensitive business information.

Description-Behavior Mismatch

Medium
Confidence
96% confidence
Finding
The Security & Permissions section claims access is scoped to campaigns, leads, sequences, and email outreach, but the rest of the file documents endpoints for team credits, companies, schedules, unsubscribes, and inbox labels. This creates a misleading security boundary and may lead operators to approve use without understanding the real breadth of accessible data and actions.

Tool Parameter Abuse

High
Category
Tool Misuse
Content
#### Delete Lead from Campaign

```bash
DELETE /lemlist/api/campaigns/{campaignId}/leads/{email}
```

### Activities
Confidence
84% confidence
Finding
DELETE /lemlist/api/campaigns/{campaignId}/leads/{email}

Tool Parameter Abuse

High
Category
Tool Misuse
Content
#### Delete Schedule

```bash
DELETE /lemlist/api/schedules/{scheduleId}
```

### Companies
Confidence
82% confidence
Finding
DELETE /lemlist/api/schedules/{scheduleId}

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal