Sage Hr

Security checks across malware telemetry and agentic risk

Overview

This Sage HR skill appears legitimate, but it gives an agent access to sensitive HR changes without clear approval safeguards.

Install only if you trust Membrane and intend to let an agent work with Sage HR data. Use a least-privileged Sage HR account and require human approval before any create, update, delete, generated action, or employee termination operation.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The skill advertises high-impact actions such as creating employees, updating jobs, deleting absences, and terminating employees without requiring confirmation or warning about business consequences. In an HR context, these actions affect sensitive personnel records and employment status, so accidental or overly eager execution could cause serious operational and privacy harm.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal