Retailed

Security checks across malware telemetry and agentic risk

Overview

This Retailed integration is coherent, but it gives an authenticated agent broad ability to change or delete retail business data without clear confirmation guardrails.

Install only if you trust Membrane and the Retailed account connection. Use the least-privileged Retailed account available, review or pin the Membrane CLI where possible, and require explicit confirmation before any create, update, delete, bulk, or raw proxy request.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill explicitly encourages direct proxy access to the remote API and lists mutating HTTP methods like POST, PUT, PATCH, and DELETE without requiring confirmation or warning that these calls can change or destroy production data. In an agent setting, this increases the chance of unintended state-changing operations against a live retail system, especially when action discovery falls back to raw requests.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal