Salesmate

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Salesmate CRM connector that can read and change CRM data through Membrane when the user connects an account.

Install only if you trust Membrane and the npm CLI package. Use the least-privileged Salesmate account or workspace available, review the connection permissions, and require the agent to preview and confirm any create, update, or DELETE request before it runs.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill explicitly documents create/update actions and a generic proxy request capability, but it does not warn that these operations can change or delete live CRM records. In an agent setting, that omission increases the chance of unintended destructive actions against production Salesmate data, especially when the proxy supports arbitrary HTTP methods including DELETE.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal