Oura Ring Integration

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed, read-only Oura Ring integration, but users should treat its health data and OAuth tokens as sensitive.

Before installing, review the external oura-cli repository, preferably use a trusted pinned version, and protect the Oura client secret and token file. Use the skill only in conversations where you are comfortable exposing sleep, heart rate, activity, profile, and other health-related information.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill is explicitly designed to retrieve highly sensitive health and biometric information, including sleep, heart rate, stress, blood oxygen, and profile data, but it provides no privacy warning, consent guidance, or limits on disclosure. In an agent setting, this increases the risk that sensitive medical-adjacent data is queried or surfaced without sufficient user awareness, minimization, or confirmation.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The skill instructs users to export OAuth client credentials and states that access tokens are stored locally in a config file, yet it gives no warning that these secrets can grant ongoing access to sensitive biometric data if exposed. This omission materially increases the chance of credential mishandling, accidental sharing, insecure file permissions, or leakage through shell history, logs, or screenshots.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal