Chimp Rewriter

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Chimp Rewriter integration that uses Membrane for authenticated API access, with no evidence of hidden or malicious behavior.

Install this only if you are comfortable using Membrane as an intermediary for Chimp Rewriter. Prefer discovered Membrane actions over raw proxy requests, authenticate only the intended account, and confirm before write, delete, or bulk operations.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 79% confidence
Finding: The skill description is broad enough that an agent may invoke it for generic requests about 'interacting with Chimp Rewriter data' without strong task scoping or user confirmation. In a network-enabled skill that can create connections and send proxy requests, overbroad routing increases the chance of unintended external actions or data access beyond what the user specifically requested.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal