ClawHub

Pro Ledger

Security checks across malware telemetry and agentic risk

Overview

This Pro Ledger skill is a coherent accounting integration, but it needs review because it enables broad authenticated access to sensitive financial records without explicit confirmation rules for write or delete actions.

Install only if you trust Membrane with the selected Pro Ledger account. Use the least-privileged account available, prefer read-only discovery first, require explicit confirmation before creating, editing, or deleting accounting records, and revoke the Membrane/Pro Ledger connection when finished.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Vague Triggers

Medium
Confidence
86% confidence
Finding
The skill description is broad enough that an agent may invoke it for generic accounting-related requests without confirming the user actually wants to operate on Pro Ledger. In a financial integration, over-broad activation increases the chance of unnecessary connection setup, data access, or accidental execution of account-affecting actions against the wrong system.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The instructions describe running actions and proxying arbitrary API requests, including POST, PUT, PATCH, and DELETE, but do not warn that these operations may create, alter, or delete financial records. In an accounting context, omission of a confirmation requirement materially raises the risk of unintended writes, invoice changes, contact edits, or data deletion with financial and audit consequences.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal