Dropbox

Security checks across malware telemetry and agentic risk

Overview

This is a transparent Dropbox integration, but users should treat file deletion, sharing changes, and raw API requests as sensitive operations.

Install only if you are comfortable granting Membrane delegated Dropbox access. Review OAuth permissions, verify the CLI package before global install, confirm exact paths and impact before delete/move/revoke/share operations, prefer pre-built actions over raw proxy requests, and revoke the Dropbox connection when no longer needed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill documents destructive actions like move, delete, revoke-link, and copy operations without requiring confirmation, dry-run checks, or explicit user authorization. In an autonomous or weakly supervised agent setting, this can lead to unintended data deletion, data movement, or disruption of file sharing.

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The proxy request feature enables arbitrary Dropbox API calls with authenticated network access, but the skill provides no warning about unrestricted data access, transmission, or higher-risk operations outside curated actions. This expands the attack surface by making it easier for an agent to perform sensitive reads, writes, or sharing changes through raw requests.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal