Saleor

Security checks across malware telemetry and agentic risk

Overview

This appears to be a legitimate Saleor integration, but it gives an agent broad authenticated access to modify e-commerce data without clear safety boundaries.

Install only if you are comfortable granting Membrane delegated access to the intended Saleor store. Prefer a test or least-privilege account, review the Membrane CLI package/version before installing globally, and require explicit user approval before any operation that creates, updates, or deletes products, orders, customers, staff users, vouchers, sales, or other production data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill exposes a generic proxy request mechanism with support for all major HTTP methods, including POST, PUT, PATCH, and DELETE, but does not warn that these can modify or destroy Saleor resources. In an agent setting, this increases the risk of unintended high-impact actions such as deleting products, altering orders, or changing customer data without sufficient confirmation or guardrails.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal