7Shifts

Security checks across malware telemetry and agentic risk

Overview

This is a coherent 7shifts integration, but it gives an agent live authority over workforce records without clear confirmation safeguards.

Install only if you are comfortable granting Membrane-mediated access to your 7shifts account. Use the least-privileged 7shifts role available, verify company/location/user/shift IDs before changes, require explicit approval for create/update/delete/deactivate/timekeeping actions, and consider separately reviewing or pinning the Membrane CLI instead of relying on the latest npm tag.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 91% confidence
Finding: The skill description is broad enough that an agent may invoke it for many generic requests involving employee, scheduling, or company data without clear scoping or user-intent checks. In an HR/workforce context, over-broad routing increases the chance of unnecessary access to sensitive staffing information or unintended operational actions.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill advertises destructive capabilities like deleting shifts and deactivating users without any requirement for confirmation, dry-run behavior, or warning language. In a live restaurant scheduling system, mistaken or overly eager agent execution could disrupt staffing, payroll-adjacent records, and business operations.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal