ClawHub

Rock Rms

Security checks across malware telemetry and agentic risk

Overview

This looks like a legitimate Rock RMS integration, but it gives an agent broad access to sensitive church records and write-capable API actions without clear confirmation safeguards.

Install only if you trust Membrane and have authority to connect this Rock RMS instance. Use a least-privileged Rock RMS account, treat write/delete/workflow/communication operations as high impact, and require the agent to summarize intended changes and get explicit approval before taking them.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The skill’s invocation description is very broad and encourages use for general Rock RMS interaction without defining limits around read-only vs. write operations, sensitive data, or approval requirements. In a church management context, that can cause the agent to engage on requests involving membership, donations, communications, or workflow changes without sufficient user confirmation or scoping.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill omits warnings that it can access and modify highly sensitive church-management data, including personal records, financial transactions, prayer requests, communications, and security-related objects. Because it also documents direct proxy requests, a user may not realize the breadth of data exposure or the risk of destructive changes, increasing the chance of privacy violations or unauthorized administration.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal