Getform

Security checks across malware telemetry and agentic risk

Overview

This skill is a coherent Getform connector skill that uses OOMOL's CLI for disclosed read and submit actions, with the remote CLI installer presented as a fallback setup step rather than hidden execution.

Install only if you are comfortable using OOMOL as the connector for your Getform account. Review any form submission payload before approving it, and treat the optional curl-to-bash CLI installer as a normal third-party install step that should come from a trusted OOMOL source.

SkillSpector

By NVIDIA

Vulnerability Patterns

Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

External Script Fetching

High

Category: Supply Chain
Content: - **`oo: command not found`** — install the oo CLI (other platforms: <https://cli.oomol.com/install-guide.md>): ```bash curl -fsSL https://cli.oomol.com/install.sh | bash # macOS / Linux ``` ```powershell
Confidence: 90% confidence
Finding: curl -fsSL https://cli.oomol.com/install.sh | bash

VirusTotal

57/57 vendors flagged this skill as clean.

View on VirusTotal