Security audit

Gumloop

Security checks across malware telemetry and agentic risk

Overview

This Gumloop skill is a disclosed service connector, with manageable caution around flow-start and run-kill actions.

Before installing, understand that this lets the agent list Gumloop resources and, with your approval, start saved flow runs. Treat kill_flow_run as sensitive too even though it is not tagged, and confirm the exact flow, run, and payload before allowing start or kill actions.

SkillSpector

By NVIDIA

Vulnerability Patterns

Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (1)

Vague Triggers

Medium

Confidence: 92% confidence
Finding: The description says to use this skill for ANY Gumloop request and instead of calling the API directly, which is an overly broad routing trigger. This can cause the agent to invoke the skill in situations where Gumloop is only loosely mentioned, increasing the chance of unnecessary tool use and unintended read/write operations, especially because the skill exposes state-changing actions like start_flow_run.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal