Back to skill

Security audit

Proppely

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Proppely MCP connector for property-management work, with expected OAuth access and safeguards for sensitive actions.

Before installing, confirm you trust Proppely and the referenced marketplace repository, review the OAuth scopes and selected organization, and use the approval flow carefully for payouts, legal actions, signatures, access changes, and other consequential writes.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

VirusTotal

56/56 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.