Phantombuster

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Phantombuster integration that uses Membrane for account access and API actions, with no evidence of hidden or malicious behavior.

Install only if you intend to manage Phantombuster through Membrane. Verify the Membrane CLI package before global installation, connect only the intended account or workspace, and require explicit confirmation before launching automations, changing scripts, aborting jobs, deleting data, or using raw proxy requests.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill explicitly documents direct proxy requests with mutating HTTP methods such as POST, PUT, PATCH, and DELETE, but does not instruct the agent to obtain confirmation before performing state-changing operations or warn that data will be transmitted to an external service. In an agent setting, this can lead to unintended modification, deletion, or external disclosure of Phantombuster data through raw requests that bypass safer, higher-level actions.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal