Mailchimp

Security checks across malware telemetry and agentic risk

Overview

This appears to be a disclosed Mailchimp integration that needs a Maton API key and can manage Mailchimp marketing data, including write actions that users should approve carefully.

Install only if you trust Maton with the Mailchimp account you connect. Use the least-privileged account practical, confirm the exact audience, subscriber, campaign, or template before any create/update/delete/send/batch operation, and revoke the Maton connection when it is no longer needed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 90% confidence
Finding: The skill explicitly documents a generic proxy request capability supporting POST, PUT, PATCH, and DELETE against the Mailchimp API, but gives no guidance to require user confirmation before state-changing operations. In an agent setting, this increases the chance that the agent could execute destructive or irreversible actions on campaigns, audiences, members, or automations based on ambiguous prompts or prompt injection.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal