Target Contact Finder

Security checks across malware telemetry and agentic risk

Overview

The skill matches its CRM lead-finding purpose, but it sends credentials and contact data to an unencrypted raw-IP service and can add records to a CRM.

Install only if you trust the publisher and the raw-IP service. Use a limited, revocable key, confirm the target CRM account before importing, review every batch before approval, and avoid using the skill for contact data unless you have a lawful basis to process it.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

High

Confidence: 95% confidence
Finding: The skill is configured to trigger on a very broad set of common phrases and says it must be used immediately whenever the user appears to want to find or import customers. That can cause unintended invocation on ambiguous requests and route user intent into a workflow that searches for personal contact data and imports it into a CRM without adequate minimization or consent checks.

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill explicitly searches, displays, and batch-imports named contacts with email addresses and phone numbers, but the documentation does not prominently warn about handling personal data, consent, retention, or downstream CRM processing. In this context, the omission is risky because the core function is lead enrichment and bulk ingestion of personal contact information.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal