Exabeam

Security checks across malware telemetry and agentic risk

Overview

This looks like a legitimate Exabeam automation skill, but it gives the agent broad power to make changes through Exabeam API calls without clear confirmation guardrails.

Review before installing. Use a read-only or least-privilege Exabeam account first, preferably in a test environment, and require explicit human approval before any POST, PUT, PATCH, DELETE, configuration, retention, connector, rule, permission, or case-modifying action.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill explicitly instructs the agent to run actions and send proxy requests directly to the Exabeam API, including methods such as POST, PUT, PATCH, and DELETE, without requiring confirmation for state-changing operations. In a SIEM/admin context, this can lead to unintended modification of cases, rules, connectors, permissions, or system configuration if the agent acts on ambiguous or malicious prompts.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal