Nordic Api Gateway

Security checks across malware telemetry and agentic risk

Overview

This financial API skill appears legitimate, but it gives an agent broad authenticated power to make raw account-changing requests without clear confirmation safeguards.

Install only if you are comfortable connecting this agent to the financial service through Membrane. Prefer documented read-only actions, and require the agent to summarize and get your explicit approval before any POST, PUT, PATCH, or DELETE request, especially requests involving payments, payouts, subscriptions, transfers, invoices, customers, or deletion.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill exposes a generic proxy request capability that supports arbitrary HTTP methods, headers, query parameters, and request bodies, but it does not warn that these requests can create, modify, or delete remote financial data. In a financial integration context, this increases the chance an agent will issue unsafe state-changing calls without clear user awareness or confirmation.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal