ClawHub

Prediction Market Pro Trader

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed prediction-market trading advisor, but it gives actionable buy/hold/pass and sizing guidance while also telling users not to treat outputs as recommendations.

Review before installing if you might rely on it for real-money decisions. It does not appear to execute trades or access accounts, but it can produce prescriptive trading guidance despite disclaimers saying not to treat the output as financial advice.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Intent-Code Divergence

Medium
Confidence
95% confidence
Finding
The skill says it provides analysis/education only, but the body explicitly instructs users to identify arbitrage, calculate edge, size positions, and issue actionable trading outputs. That contradiction can mislead users into relying on the content as de facto financial advice while the disclaimer attempts to disclaim responsibility. In a trading skill, this mismatch increases legal/compliance risk and user-harm risk from overreliance on recommendations.

Intent-Code Divergence

High
Confidence
99% confidence
Finding
The disclaimer explicitly says users should not treat outputs as recommendations to buy, sell, or hold, yet the required output format mandates exactly those recommendation labels and even adds confidence and sizing guidance. This is a direct contradiction that makes the disclaimer ineffective and may encourage users to act on regulated-style advice under a false impression of safety or non-advisory status. Because the skill is specifically designed for financial trading decisions, the context makes the inconsistency more dangerous, not less.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal