Pinecone
Security checks across malware telemetry and agentic risk
Overview
This Pinecone skill is a clearly disclosed OOMOL/oo CLI integration, with sensitive and destructive capabilities identified and confirmation guidance included.
Install only if you expect the agent to operate your Pinecone account through OOMOL. Review write and destructive requests carefully, especially delete_index and delete_vectors, and prefer inspecting the oo CLI installer before running the provided pipe-to-shell setup commands.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.