Marketing Miner

Security checks across malware telemetry and agentic risk

Overview

This Marketing Miner skill is mostly coherent, but it gives an agent broad authenticated API access that can modify or delete account data without clear confirmation rules.

Install only if you trust Membrane and intend to connect a Marketing Miner account. Prefer prebuilt Membrane actions, use the least-privileged account available, require explicit confirmation before write, delete, or bulk requests, and revoke the Membrane connection when finished.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The skill description is overly broad: 'Manage data, records, and automate workflows' could match many generic user requests unrelated to Marketing Miner. That increases the chance this skill is invoked in the wrong context, causing unintended access to external systems or actions on a connected account without sufficiently specific user intent.

Missing User Warnings

Medium

Confidence: 84% confidence
Finding: The proxy request section enables direct API access through Membrane but does not require a user confirmation or warning before making arbitrary external requests. In practice, this can bypass safer pre-built actions and make it easier for an agent to send unexpected requests, query sensitive data, or perform state-changing operations against the connected Marketing Miner account.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal