Back to skill

Security audit

Kustomer

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Kustomer connector skill with disclosed read and write actions, though users should be careful because it can update CRM customer records through an OOMOL connection.

Install only if you intend to let an agent access Kustomer through your OOMOL account. Treat reads as customer-data access, and require exact confirmation before creating or updating customers. Review the `oo` CLI installation command before running first-time setup.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The skill description instructs the agent to use this skill for ANY Kustomer request, creating an overly broad trigger that can preempt more specific tools or policy checks. Because this skill includes both read and write operations, an unconstrained invocation scope increases the chance of unintended data access or state-changing actions being routed through it without sufficient task-level validation.

VirusTotal

46/46 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.