Factorial

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Factorial HR integration, but it gives broad authenticated access to sensitive employee and business records without clear guardrails for reads or changes.

Install only if you trust Membrane with Factorial access and can use a least-privilege Factorial account. Treat this as Review because it can read or change sensitive HR records; require explicit approval before any employee, payroll, time-off, billing, expense, contract, document, or delete/update action, and consider pinning the Membrane CLI version instead of using @latest.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 81% confidence
Finding: The skill description is broad enough that an agent may invoke it for loosely related requests involving Factorial or HR data without clear user confirmation. Because this integration can access or modify sensitive employee records, overbroad triggering increases the chance of unintended data exposure or actions in a high-sensitivity domain.

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: This skill handles sensitive HR data, including employee records, payroll, documents, and time tracking, but the documentation does not warn about privacy, authorization, or change risks. In this context, missing safety guidance makes accidental over-collection, disclosure, or modification of regulated personnel data more likely.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal