ClawHub

Find Skills.Local.Backup

Security checks across malware telemetry and agentic risk

Overview

This instruction-only skill is coherent, but it recommends globally installing third-party skills while skipping confirmation prompts, which needs user review.

Use this skill for searching, but review the exact skill source, publisher, and requested behavior before installing anything. Prefer running install commands without `-y`, avoid global `-g` installs unless you want the skill available across future sessions, and keep a way to remove installed skills if they are not needed.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Vague Triggers

Medium
Confidence
91% confidence
Finding
The frontmatter description defines activation using very broad phrases like 'how do I do X' and general interest in capabilities, which can cause this skill to trigger on many ordinary requests that are not actually about discovering installable skills. Over-broad activation increases the chance the agent steers users toward package discovery and installation workflows unnecessarily, expanding exposure to unreviewed third-party skills and accidental tool use.

Vague Triggers

Medium
Confidence
95% confidence
Finding
The 'When to Use This Skill' section lists ambiguous triggers such as 'can you do X' and users wishing they had help in a domain, without constraints or disambiguation steps. In context, this is risky because it can redirect broad conversational prompts into a workflow that recommends or installs external skills, creating unnecessary supply-chain and permission exposure.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The skill recommends installing with `npx skills add <owner/repo@skill> -g -y`, combining global installation with automatic confirmation and no user-facing warning about trust, permissions, or system-wide impact. This is dangerous because it normalizes silent installation of third-party code or configuration into the user's environment, reducing friction that would otherwise help users review the package source and consent to changes.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal