Facebook Ads

Security checks across malware telemetry and agentic risk

Overview

This is a real Facebook Ads management skill, but it gives an agent high-impact ad account mutation powers without enough confirmation or scoping guidance.

Install only if you trust Membrane and intend to let an agent work with Facebook Ads. Use the least-privileged Facebook/Membrane account available, verify the exact ad account before each run, and require explicit approval before creating, updating, deleting, changing budgets, modifying audiences, or running newly generated actions.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill documents destructive actions like creating, updating, and deleting campaigns without an explicit warning that these operations affect live advertising resources and can cause financial loss, service disruption, or unintended campaign changes. In an agent setting, lack of a clear caution increases the chance that a model or operator executes high-impact mutations without adequate confirmation.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal