Zendesk

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Zendesk integration, but it gives an agent broad ability to change or delete support records without clear confirmation safeguards.

Install only if you trust Membrane and intend to let an agent access Zendesk. Use a least-privilege Zendesk account, review any generated Membrane action before running it, and require manual confirmation for create, update, delete, spam, or bulk operations. Consider pinning or verifying the Membrane CLI package before granting account access.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The skill enumerates destructive operations such as deleting tickets and organizations without any accompanying caution, confirmation requirement, or discussion of irreversibility. In a customer support system, accidental deletion can destroy operational records, disrupt workflows, and cause permanent data loss if an agent executes these actions too readily.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal