Phoneburner

Security checks across malware telemetry and agentic risk

Overview

This is a real PhoneBurner integration, but it gives an agent broad authenticated ability to change CRM data without clear approval limits.

Review this before installing if you connect a real PhoneBurner workspace. Use a limited-permission account where possible, require explicit approval before any create/update/delete/send or bulk action, review raw proxy paths and payloads carefully, and revoke the Membrane connection when you no longer need it.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill explicitly teaches how to run actions and send direct proxy requests that can perform arbitrary API operations, but it does not warn the agent to distinguish read-only from state-changing actions or to obtain user confirmation before mutating remote PhoneBurner data. In an agent setting, this increases the risk of unintended writes, deletions, or bulk changes to production CRM/contact data through natural-language requests.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal