ClawHub

local-media-cataloger

Security checks across malware telemetry and agentic risk

Overview

This skill locally catalogs a user-chosen media folder into a manifest, with no hidden networking, credential use, persistence, or destructive behavior found.

Install only if you are comfortable letting it enumerate a folder you choose. Run it on a specific media or project directory, not your home, Documents, Downloads, or cloud-sync root, and review the generated CSV before sharing it.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Lp3

Medium
Category
MCP Least Privilege
Confidence
85% confidence
Finding
The skill advertises and instructs use of a local script that generates CSV/JSON manifests, which implies file creation/write behavior, but no permissions are declared to make that capability explicit to users or the platform. Hidden or undeclared write capability can cause unexpected modification of the local filesystem and weakens informed consent and policy enforcement around data handling.

Tp4

High
Category
MCP Tool Poisoning
Confidence
91% confidence
Finding
The documented behavior materially overstates what the skill does, claiming media-specific indexing, tagging, shoot information, and reuse ideas while the underlying behavior appears to be a broad file listing with basic CSV output. This mismatch is dangerous because users may grant access to sensitive folders under false assumptions about scope and processing, leading to oversharing, privacy exposure, or unsafe operational decisions based on incomplete output.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal