ClawHub

Infrastructure for agents

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed AgentOS infrastructure reference, but it can lead users to run paid, privacy-sensitive, and destructive operations if used carelessly.

Install only if you intend to let an agent manage real AgentOS infrastructure. Use a dedicated low-balance wallet, review the npm CLI before running it, require explicit human confirmation for paid or destructive actions, do not expose your Solana keypair to untrusted prompts, and avoid call recording or outbound messaging unless you have consent and a clear retention policy.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The skill documents SMS, voice calling, inbox reading, and email sending capabilities without any explicit warnings about consent, privacy, cost, or misuse. In an agent context, these actions can directly affect third parties and incur charges, so omission of cautions materially increases the risk of unsafe autonomous use.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The compute section includes server deployment and deletion operations, including irreversible deletion, without any warning about data loss, billing impact, or confirmation requirements. In a skill intended for agents, this can lead to accidental destructive infrastructure changes if the tool is invoked from ambiguous prompts or bad parameters.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The wallet commands include key generation and wallet creation without any warning about secret material handling, secure storage, or non-custodial responsibility. Because wallet credentials control identity and potentially funds/resources, careless use or logging of key material could lead to account takeover or financial loss.

Missing User Warnings

High
Confidence
98% confidence
Finding
The documented call recording capability is presented without any notice about consent, legal restrictions, retention, or sensitive-data exposure. Recording phone calls is especially risky because laws vary by jurisdiction and agents may capture highly sensitive personal or business information without participant awareness.

VirusTotal

58/58 vendors flagged this skill as clean.

View on VirusTotal