Mailchimp
Security checks across malware telemetry and agentic risk
Overview
This Mailchimp skill is a disclosed ClawLink-based integration that can manage a connected Mailchimp account, including high-impact actions, but it requires user confirmation for writes and shows no scanner or artifact-backed malicious behavior.
Install this only if you are comfortable connecting Mailchimp through ClawLink and allowing an agent to read and manage your Mailchimp account. Review write previews carefully, especially for sending campaigns, deleting lists or subscribers, exporting account data, changing e-commerce records, and creating webhooks.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
59/59 vendors flagged this skill as clean.