Email Campaign Management

Security checks across malware telemetry and agentic risk

Overview

The skill is for legitimate email campaign work, but it can send real emails and change live subscription/trial status with too few safeguards.

Install only if you intend an agent to assist with real marketing operations. Use least-privilege Resend and database credentials, require explicit approval for each recipient list and campaign send, test in staging or with a dry run, confirm opt-in and unsubscribe/compliance requirements, and prepare rollback steps before applying subscription or trial updates.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The skill explicitly handles campaign email sending and trial activation but does not warn that recipient email addresses and campaign metadata are transmitted to a third-party provider. In a marketing workflow, that omission can lead operators to process personal data without appropriate consent, disclosure, or data-handling review.

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The trial activation workflow directly updates subscription records, creates new subscriptions, and marks campaign clicks as converted, but it provides no explicit warning that this changes live user account state. In practice, an operator could run this against production data and unintentionally grant entitlements, overwrite billing-related fields, or corrupt conversion tracking.

VirusTotal

No VirusTotal findings

View on VirusTotal