Icepay
Security checks across malware telemetry and agentic risk
Overview
This ICEPAY payment integration is coherent, but it should be reviewed because it grants broad live payment-account API access through Membrane, including raw state-changing requests, without explicit confirmation guardrails.
Install only if you are comfortable letting Membrane broker access to an ICEPAY account. Prefer least-privileged or test credentials, use discovered Membrane actions before raw proxy calls, require explicit approval for any create/update/delete or payment-affecting request, and revoke the Membrane connection when no longer needed.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.