ClawHub
Back to skill
v1.0.1

Hatsune Miku Monitor

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 8:14 AM.

Analysis

The skill appears to be a real desktop monitor, but it asks users to enable passwordless sudo and includes one-click system cleanup actions that can modify system state and delete logs.

GuidanceThis looks like a disclosed desktop system monitor rather than malware, but treat it as a Review install because of the optional passwordless sudo setup and one-click cleanup behavior. Install only if you are comfortable with local system changes, avoid the NOPASSWD sudoers entries unless necessary, and review the dependency script before running it.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation
SeverityMediumConfidenceHighStatusConcern
SKILL.md
点击"⚡ 一键加速"按钮会:... 清理系统缓存 ... Swap 刷新 ... 清理用户缓存目录 ... 清理 journalctl 日志(保留1天)

The one-click action performs system mutations and deletes cache/log data, with no separate confirmation or rollback described.

User impactClicking the boost button could disrupt running workloads, remove useful caches, and delete older system logs that may be needed for troubleshooting.
RecommendationUse the acceleration feature only when you intentionally want those cleanup actions, and avoid granting it passwordless sudo access.
Agentic Supply Chain Vulnerabilities
SeverityLowConfidenceHighStatusNote
scripts/install-deps.sh
sudo apt update ... sudo apt install -y ... pip3 install psutil pillow --break-system-packages

The dependency script uses system package managers and pip installs, including a flag that can modify the system Python environment.

User impactInstalling dependencies can change system packages or Python packages outside the skill itself.
RecommendationReview the install script before running it, and consider installing Python dependencies in a virtual environment where possible.
Rogue Agents
SeverityLowConfidenceHighStatusNote
SKILL.md
创建:`~/.config/systemd/user/hatsune-monitor.service` ... `Restart=always` ... `systemctl --user enable hatsune-monitor`

The skill documents optional user-level persistence so the monitor starts automatically and restarts if it exits.

User impactIf enabled, the monitor will keep running across login sessions until the user disables the service.
RecommendationEnable autostart only if desired; disable it with `systemctl --user disable --now hatsune-monitor` if you no longer want it running.
Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse
SeverityMediumConfidenceHighStatusConcern
SKILL.md
允许无密码执行... your_username ALL=(ALL) NOPASSWD: /usr/sbin/swapoff ... /usr/sbin/swapon ... /usr/bin/journalctl

The skill recommends sudoers entries that let the user run privileged system commands without a password.

User impactIf enabled, the skill or any process running as that user may be able to perform privileged cleanup-related operations without an interactive password prompt.
RecommendationDo not add the NOPASSWD sudoers entries unless you fully understand them; prefer running privileged cleanup manually or using tightly scoped, reviewed commands.