Meta Ads CLI - control your ad campaigns

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Meta Ads CLI wrapper with real ad-account authority, but its risky actions are purpose-aligned and gated by explicit approval steps.

Install this only if you intend to let an agent inspect or operate a Meta Ads account. Use a token scoped to the intended account, prefer read-only credentials for reporting, review every proposed write command, and only approve budget, activation, deletion, or raw CLI use when the exact account, object ID, action, and values are clear.

SkillSpector

By NVIDIA

Vulnerability Patterns

MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Lp3

Medium

Category: MCP Least Privilege
Confidence: 94% confidence
Finding: The skill explicitly expects shell execution, environment variable access, and local file reads/writes, but it does not declare permissions in a machine-enforceable way. That mismatch is a real security issue because an agent platform may grant or evaluate capabilities incorrectly, reducing transparency and weakening policy enforcement for a skill that can run commands and manipulate local data.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal