Nmbrs

Security checks across malware telemetry and agentic risk

Overview

This HR/payroll integration appears legitimate, but it grants broad authenticated access that can change sensitive employee and payroll records without clear confirmation safeguards.

Review this before installing. Use it only with a least-privilege Membrane connection, avoid broad admin credentials, and require explicit confirmation before any payroll, employee-record, absence, journal-entry, delete, approve, submit, or update action.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 84% confidence
Finding: The skill description is overly broad for a high-risk HR/payroll integration, covering generic requests to 'manage data, records, and automate workflows.' That can cause the agent to invoke this skill for routine data tasks without clearly signaling that payroll and employee records may be accessed or changed, increasing the chance of unintended use in a sensitive domain.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill explicitly documents direct proxy requests with support for POST, PUT, PATCH, and DELETE against an HR/payroll system, but does not require user confirmation, read-only defaults, or warnings about modifying sensitive records. In this context, that creates a real risk of accidental or overly broad changes to employee, payroll, absence, or journal-entry data.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal