ClawHub

Podio

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Podio integration using Membrane, but it can modify or delete Podio workspace data and should be used with explicit confirmation for changes.

Install only if you trust Membrane to mediate Podio access. Connect only the intended Podio workspace, review the connection ID and action parameters before running commands, and require explicit confirmation before any create, update, delete, comment, or file-attachment action.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Description-Behavior Mismatch

Medium
Confidence
93% confidence
Finding
The manifest says the skill is for managing Organizations and Users, but the body documents far broader capabilities including items, tasks, files, comments, apps, and destructive operations. This mismatch can cause the agent or user to invoke the skill under a narrower trust assumption than the skill actually supports, increasing the chance of unintended data access or modification.

Intent-Code Divergence

Medium
Confidence
91% confidence
Finding
The same file presents a narrow scope in the manifest but a broad operational scope in the documentation, creating internal inconsistency about what the skill can do. In an agent setting, ambiguous scope weakens policy enforcement and user consent because routing and trust decisions may rely on the manifest text.

Vague Triggers

Medium
Confidence
82% confidence
Finding
The invocation description is broad enough that the skill may be selected for generic Podio requests without clear constraints on safe versus destructive behavior. Overbroad routing increases the chance the skill is invoked in contexts where the user expected read-only help but the skill can also discover or perform state-changing actions.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill advertises destructive actions like create, update, and delete without any warning, confirmation requirement, or safety guidance. In an agent workflow this is dangerous because it normalizes state-changing operations and can lead to accidental or unauthorized modification or deletion of Podio data.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal