ClawHub

Healthchecks.io

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Healthchecks.io connector skill for managing checks through OOMOL, with the main caution being a documented one-time remote CLI installer command.

Install this only if you trust OOMOL and want an agent to manage Healthchecks.io checks in your connected account. Review targets and payloads before approving create, update, pause, resume, or delete actions, and treat the CLI installer command as sensitive setup that should be run only from a trusted source.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

External Script Fetching

High
Category
Supply Chain
Content
- **`oo: command not found`** — install the oo CLI (other platforms: <https://cli.oomol.com/install-guide.md>):

  ```bash
  curl -fsSL https://cli.oomol.com/install.sh | bash    # macOS / Linux
  ```

  ```powershell
Confidence
98% confidence
Finding
curl -fsSL https://cli.oomol.com/install.sh | bash

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal