Tool Parameter Abuse
High
- Category
- Tool Misuse
- Content
### Delete Customer ```bash DELETE /stripe/v1/customers/{customer_id} ``` Example:- Confidence
- 87% confidence
- Finding
- DELETE /stripe/v1/customers/{customer_id}
Stripe
Security checks across malware telemetry and agentic risk
Overview
This Stripe skill is high-impact because it can change billing data, but its capabilities are clearly disclosed, purpose-aligned, and guarded by explicit approval instructions.
Install only if you want an agent to administer Stripe. Use a least-privileged Stripe connection, prefer test mode for evaluation, always specify and verify the Maton connection ID, and require human confirmation before any payment, refund, deletion, cancellation, invoice, price, subscription, or payment-method change.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Tool MisuseTool Parameter Abuse, Chaining Abuse, Unsafe Defaults
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)
Tool Parameter Abuse
High
- Category
- Tool Misuse
- Content
### Delete Product ```bash DELETE /stripe/v1/products/{product_id} ``` Example:- Confidence
- 86% confidence
- Finding
- DELETE /stripe/v1/products/{product_id}
Tool Parameter Abuse
High
- Category
- Tool Misuse
- Content
### Cancel Subscription ```bash DELETE /stripe/v1/subscriptions/{subscription_id} ``` Example:- Confidence
- 92% confidence
- Finding
- DELETE /stripe/v1/subscriptions/{subscription_id}
Tool Parameter Abuse
High
- Category
- Tool Misuse
- Content
### Delete Coupon ```bash DELETE /stripe/v1/coupons/{coupon_id} ``` Example:- Confidence
- 80% confidence
- Finding
- DELETE /stripe/v1/coupons/{coupon_id}
VirusTotal
65/65 vendors flagged this skill as clean.