Grouparoo
Security checks across malware telemetry and agentic risk
Overview
This is a coherent Grouparoo integration, but it gives an agent broad authenticated access that could change or delete business data through Membrane without clear approval guardrails.
Install only if you trust Membrane and need agent access to Grouparoo. Use a least-privilege Grouparoo/Membrane account, avoid admin credentials, pin or verify the CLI package where possible, and require explicit approval before any write, delete, sync, export, or raw proxy request.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
VirusTotal findings are pending for this skill version.