ClawHub

collab-offer-polisher

Security checks across malware telemetry and agentic risk

Overview

This is a clipboard-based collaboration-message polishing skill; its main risk is that it can read whatever is currently on the macOS clipboard when invoked.

Install only if you are comfortable with the agent reading your current macOS clipboard when you invoke the skill. Before using it, copy only the collaboration draft or business message you want polished, and avoid invoking it while passwords, tokens, private messages, or unrelated confidential material are on the clipboard.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)

Context-Inappropriate Capability

Medium
Confidence
91% confidence
Finding
This script reads arbitrary clipboard contents via `pbpaste` and prints them to stdout, which can expose sensitive data the user copied for unrelated reasons, such as passwords, tokens, private messages, or internal documents. For a skill whose stated purpose is polishing collaboration messages, silent clipboard access is broader than necessary and increases the chance of unintended data collection or disclosure.

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill instructs the agent to read from the system clipboard via `pbpaste`/`read_clipboard.mjs` without any explicit user warning, confirmation step, or minimization guidance. Clipboard contents frequently contain sensitive data such as passwords, API keys, private messages, and financial details, so silent access can expose unrelated secrets beyond the intended collaboration text.

VirusTotal

51/51 vendors flagged this skill as clean.

View on VirusTotal