ClawHub

Mailchimp

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Mailchimp integration that can read and change marketing data through Maton, with write actions requiring user approval.

Install only if you trust Maton to broker access to your Mailchimp account. Keep MATON_API_KEY private, use the Maton-Connection header when multiple accounts exist, and require clear confirmation before sending campaigns, changing subscribers, deleting lists, or running batch operations.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill explicitly documents a generic proxy capability that can issue arbitrary Mailchimp API requests, including POST, PUT, PATCH, and DELETE, but does not instruct the agent to obtain confirmation before performing state-changing operations. In an agent setting, that omission increases the risk of unintended remote modifications or deletions because the model may infer that direct mutating calls are acceptable fallback behavior.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal