Back to skill

Security audit

Greenhouse

Security checks across malware telemetry and agentic risk

Overview

This is a clearly disclosed Greenhouse connector skill that uses OOMOL's oo CLI for recruiting data tasks, with no artifact-backed malicious behavior found.

Install this only if you are comfortable connecting Greenhouse through OOMOL and the oo CLI. Treat candidate and application data as sensitive, review any payload before write actions such as adding candidate notes, and only run the CLI install script from a source you trust.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Vague Triggers

Medium
Confidence
88% confidence
Finding
The description instructs the agent to use this skill for ANY Greenhouse request and instead of calling the API directly, which is an unusually broad routing rule. This can cause the skill to be invoked for loosely related mentions of Greenhouse and may route sensitive read/write operations through a high-privilege connector without sufficient task-specific scoping or user confirmation.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.