Zoho Salesiq

Security checks across malware telemetry and agentic risk

Overview

This is a real Zoho SalesIQ integration, but it gives an agent broad authenticated access to customer and business data without clear approval limits for changes or deletions.

Install only if you trust Membrane and intend to let an agent operate on Zoho SalesIQ data. Use the least-privileged Zoho account available, prefer listed Membrane actions over raw proxy calls, and require explicit confirmation before any POST, PUT, PATCH, DELETE, automation, or bulk operation.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly instructs the agent to make direct proxy requests to the remote Zoho SalesIQ API, including arbitrary HTTP methods and request bodies, without any safety guidance about data sensitivity, destructive operations, or user confirmation. This can enable unintended reads or writes to business data if an agent follows these instructions too broadly or on ambiguous user requests.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal