Paypal

Security checks across malware telemetry and agentic risk

Overview

This is a legitimate PayPal integration, but it gives agents broad money-moving and account-changing instructions without clear confirmation guardrails.

Install only if you intend to connect PayPal through Membrane. Verify the CLI package before global installation, prefer sandbox or least-privilege PayPal access, and require a clear per-action confirmation for any payout, refund, capture, cancellation, invoice send, deletion, subscription change, or raw API request.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill enumerates destructive and financially sensitive actions such as payouts, refunds, cancellations, deletions, captures, and order creation without requiring confirmation or warning about their real-world effects. In a payment context, this increases the risk that an agent could execute irreversible or costly operations from an ambiguous or indirect prompt.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal