pp-fathom

Enables offline analysis of Fathom meetings, tracking commitments and trends without API quota limits.

Install this skill

or

70/100

Security score

The pp-fathom skill was audited on Jun 6, 2026 and we found 6 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 141

Webhook reference - potential data exfiltration

SourceSKILL.md

141	webhooks — Webhooks for async meeting completion notifications

medium line 143

Webhook reference - potential data exfiltration

SourceSKILL.md

143	- `fathom-pp-cli webhooks create` — Create a webhook to receive meeting data on completion

medium line 144

Webhook reference - potential data exfiltration

SourceSKILL.md

144	- `fathom-pp-cli webhooks delete` — Delete a webhook by ID

medium line 280

Webhook reference - potential data exfiltration

SourceSKILL.md

280	\| `webhook:<url>` \| POST the output body to the URL (`application/json` or `application/x-ndjson` when `--compact`) \|

medium line 282

Webhook reference - potential data exfiltration

SourceSKILL.md

282	Unknown schemes are refused with a structured error naming the supported set. Webhook failures return non-zero and log the URL + HTTP status on stderr.

medium line 268

Access to hidden dotfiles in home directory

SourceSKILL.md

268	Entries are stored locally at `~/.fathom-pp-cli/feedback.jsonl`. They are never POSTed unless `FATHOM_FEEDBACK_ENDPOINT` is set AND either `--send` is passed or `FATHOM_FEEDBACK_AUTO_SEND=true`. Defau

Scanned on Jun 6, 2026

View Security Dashboard

Installation guide →

GitHub Stars 1.4K

Rate this skill

Categorysales

UpdatedJune 10, 2026

claude claude-code frontend notion stripe remotion docx git api database testing backend customer-success-manager sales-operations marketing-analyst sales marketing

mvanhorn/printing-press-library