ClawHub

Pose Transfer

Security checks across malware telemetry and agentic risk

Overview

This appears to be a real pose-transfer tool, but it needs review because it uploads chosen images to fal.ai and disables normal HTTPS verification when downloading results.

Review before installing. Use a dedicated fal.ai API key with spending limits, avoid uploading confidential, regulated, or unreleased commercial images unless fal.ai processing is approved, and fix the downloader to use normal HTTPS certificate verification before relying on saved outputs.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Context-Inappropriate Capability

High
Confidence
99% confidence
Finding
The download helper explicitly disables TLS hostname and certificate verification before fetching a remote image URL. This enables man-in-the-middle interception or spoofing of the remote endpoint, allowing an attacker on the network path or controlling DNS/proxy infrastructure to replace the generated image payload or serve malicious content while the client trusts it.

Missing User Warnings

Medium
Confidence
97% confidence
Finding
The documentation instructs users to provide a FAL API key and use a hosted model endpoint, but does not warn that uploaded images, prompts, and related metadata may be transmitted to and processed by a third-party service. For a fashion/image workflow, this can expose proprietary product photos, model images, or sensitive commercial assets to external processing without clear disclosure.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The script converts local images to data URLs and sends them to a third-party API, but it does not provide an explicit privacy/security warning at the point of use that user-supplied images and descriptions leave the local machine. In an image-processing skill, remote upload is functionally expected, but the lack of clear disclosure can still cause unintended sharing of sensitive or proprietary images.

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal