Back to skill

Security audit

Fomo

Security checks across malware telemetry and agentic risk

Overview

This skill is a clearly disclosed Fomo connector wrapper that can read, create, update, and delete Fomo events through the oo CLI, with explicit confirmation requirements for state-changing actions.

Install this only if you want your agent to manage Fomo events through OOMOL. Review payloads carefully before approving create, update, or delete actions, since those can change or remove live Fomo data.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The trigger text is overly broad: "Use this skill for ANY Fomo request" encourages invocation for all Fomo-related tasks without sufficient narrowing by action type, risk, or user intent. In an agent setting, broad routing can cause the skill to be selected in situations where a safer, more specific flow or additional confirmation logic should apply, increasing the chance of unintended reads, writes, or destructive operations.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.