Stripe API

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed read-only Stripe account inspection helper, but it can expose sensitive Stripe business and customer data if given a live secret key.

Install only if you are comfortable letting the agent read data from the Stripe account tied to STRIPE_SECRET_KEY. Use the most restricted Stripe key available, avoid putting live keys in chat or files, rotate any exposed key, and review outputs before sharing them because they may contain customer, payment, invoice, payout, dispute, and webhook information.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 96% confidence
Finding: The skill explicitly relies on an environment secret (`STRIPE_SECRET_KEY`) and live network access to Stripe, but the manifest does not declare corresponding permissions. This creates a trust and review gap: an agent may execute a skill with access to sensitive credentials and external exfiltration-capable networking without those capabilities being transparently surfaced to policy or users.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal