Plextrac

Security checks across malware telemetry and agentic risk

Overview

This PlexTrac skill is a plausible integration, but it gives an agent broad authenticated power to change or delete sensitive PlexTrac records without explicit guardrails.

Install only if you trust Membrane as an intermediary for PlexTrac data and can use a least-privilege PlexTrac account. Before allowing the agent to create, update, or delete records, require it to summarize the target connection, endpoint/action, affected objects, and payload for explicit approval.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The skill explicitly instructs the agent to use a generic proxy mechanism that supports POST, PUT, PATCH, and DELETE against the PlexTrac API, but it does not require confirmation gates, read-only defaults, or warnings before state-changing operations. In an agent setting, this increases the risk of unintended record creation, modification, or deletion if the model misinterprets a user request or chooses a proxy call over a safer prebuilt action.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal