Lastpass Enterprise Api

Security checks across malware telemetry and agentic risk

Overview

This LastPass Enterprise skill appears purpose-aligned, but it gives the agent a broad raw API proxy for sensitive password-management administration without clear safeguards.

Install only if you trust the publisher and intend to let an agent operate against LastPass Enterprise through Membrane. Use the least-privileged LastPass/Membrane account possible, prefer curated actions over raw proxy requests, and require explicit human approval before any POST, PUT, PATCH, or DELETE request or any request that exports, changes, or deletes vault, user, group, or policy data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill documents a generic proxy mechanism that supports arbitrary HTTP methods, headers, body data, and path parameters against the LastPass Enterprise API. In a password-management context, this expands the agent's reachable attack surface to potentially destructive or sensitive endpoints without any embedded requirement for confirmation, endpoint allowlisting, or read-only defaults.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal