Facturadirecta

Security checks across malware telemetry and agentic risk

Overview

This FacturaDirecta skill is a coherent accounting integration, but it gives an agent broad ability to create or change financial records through Membrane without clearly requiring confirmation for risky actions.

Review this carefully before installing. Use it only with a trusted Membrane account and the intended FacturaDirecta workspace, and require explicit confirmation before the agent creates, updates, deletes, or sends any invoice, expense, client, product, bank-account-related, or tax-related data. Prefer listed Membrane actions over raw proxy requests, and revoke the Membrane connection when it is no longer needed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill documents create/update operations for invoices, clients, products, and raw proxy requests to the accounting API without requiring user confirmation or clearly warning that these actions can modify real business data. In an invoicing/accounting context, silent writes or direct API calls can cause financial, compliance, and data integrity harm if triggered unintentionally or through prompt manipulation.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal