Woosender

Security checks across malware telemetry and agentic risk

Overview

This appears to be a legitimate Woosender/Membrane integration, but it grants broad authenticated access that can modify business data and make raw API requests beyond the narrow manifest description.

Install only if you are comfortable granting Membrane-mediated access to your Woosender account. Confirm each action, target record, and input before running commands, and be especially cautious with proxy requests or any operation that can create, update, delete, send, or move business data.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Description-Behavior Mismatch

Medium

Confidence: 90% confidence
Finding: The manifest description says the skill is for managing organizations, but the body exposes much broader capabilities including contact management, appointments, campaigns, and arbitrary proxy API access. This mismatch can cause an agent or reviewer to grant the skill more trust or broader permissions than intended, increasing the risk of over-privileged use and unexpected data access/modification.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal