Bookingmood

Security checks across malware telemetry and agentic risk

Overview

This appears to be a legitimate Bookingmood integration, but it needs review because it can change or delete business booking data without documented confirmation safeguards.

Install only if you trust Membrane and need agent-assisted Bookingmood administration. Use the least-privileged Bookingmood account available, review the Membrane connection, and require the agent to show the target booking/contact/note IDs and exact intended changes before any create, update, delete, or raw proxy request.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (2)

Vague Triggers

Medium

Confidence: 86% confidence
Finding: The skill description is broad enough to match many generic 'manage data, records, and automate workflows' requests, which can cause the agent to invoke this Bookingmood skill outside a clearly scoped booking-management context. Over-broad routing increases the chance of unintended access to booking, contact, or calendar data and raises the likelihood of accidental state-changing operations.

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The skill advertises a destructive 'Delete Booking' capability without any warning, confirmation requirement, or guidance about irreversible data impact. In an agent setting, documenting deletion as a normal action can normalize unsafe execution and lead to accidental or unauthorized booking removal if the agent misinterprets user intent.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal