Back to skill

Security audit

Agent ToMerchant

Security checks across malware telemetry and agentic risk

Overview

This payment-receiving skill is mostly coherent, but it exposes real payment-account authority and includes an out-of-scope control for agent spending status.

Install only if you trust SynapseAI’s wallet service and intend to let an agent manage merchant payment receiving. Use a narrowly scoped token if available, confirm every wallet, payment link, amount, webhook URL, and status change before sending API calls, and avoid using the spending-status toggle from this merchant skill unless you explicitly intend to change broader agent spending behavior.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Context-Inappropriate Capability

Medium
Confidence
91% confidence
Finding
The skill is advertised as a merchant payment-receiving integration, but it documents use of a shared toggle endpoint that can also change the agent's broader spending status. Exposing an out-of-scope administrative control increases the chance that an agent or user invoking this skill could unintentionally disable or alter unrelated financial behavior, violating least privilege and creating operational or financial disruption.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.