Demandbase

Security checks across malware telemetry and agentic risk

Overview

This DemandBase integration is coherent, but it gives agents broad authenticated access to read and change live business data through a raw API proxy without clear confirmation guardrails.

Install only if you are comfortable letting an agent operate against your DemandBase account through Membrane. Use least-privilege DemandBase/Membrane access where possible, prefer built-in Membrane actions over raw proxy requests, and require a human confirmation step before any create, update, patch, delete, campaign, account, or workflow-changing operation.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly documents direct proxy requests with support for POST, PUT, PATCH, and DELETE, but it does not require confirmation or warn about destructive effects before data-changing calls. In an agent context, this increases the risk of unintended modification or deletion of DemandBase data if a user request is ambiguous or the agent selects a raw request path without adequate safeguards.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal