Security audit

Fathom Analytics

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Fathom Analytics integration that uses the OOMOL oo CLI, with write actions identified and user confirmation required.

Install this only if you intend to let the agent work with your Fathom Analytics account through OOMOL. Review proposed create or update payloads before approval, and treat the oo CLI setup and OOMOL connection as account-level access to your analytics data.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 89% confidence
Finding: The trigger text says to use this skill for ANY Fathom Analytics request and instead of calling the API directly, which is broader than necessary and can cause the agent to invoke the skill for loosely related requests without adequate task-specific validation. Because the skill includes both read and write actions, over-invocation increases the chance of unintended state-changing operations or unnecessary exposure of connected-account data.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal