Security audit

Agiled

Security checks across malware telemetry and agentic risk

Overview

This Agiled skill is a disclosed OOMOL CLI connector for Agiled CRM, project, and task actions, with clear warnings for writes and deletes.

Before installing, make sure you trust OOMOL and are comfortable connecting your Agiled account through its `oo` CLI. For creates, updates, and deletes, review the exact target and JSON payload before approving the action.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 93% confidence
Finding: The description says to use this skill for ANY Agiled request and instead of calling the API directly, which is an overly broad trigger that can cause the agent to invoke the skill in situations where a narrower or safer tool choice would be more appropriate. In a skill that supports both read and destructive actions, broad routing increases the chance of unintended state-changing operations being funneled through a single powerful integration.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal