Frameio

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Frame.io management skill that uses Membrane for authentication and API access, with normal but potentially sensitive account-changing capabilities.

Install only if you trust Membrane and the Membrane CLI package. Connect only the intended Frame.io account, prefer read/list actions before changes, and require explicit confirmation before deleting assets, creating share/review links, or making other account-changing requests.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill explicitly exposes a destructive `delete-asset` capability but provides no guidance to require user confirmation, verify scope, or warn about irreversible effects. In an agent setting, that omission increases the risk of accidental or over-broad deletion if the model interprets a vague request as authorization to remove assets.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal