ClawHub

Web Search Instant 1.1.0

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward DuckDuckGo search helper, with the main privacy caveat that search terms are sent to DuckDuckGo.

Install this only if you want a local command that sends search queries to DuckDuckGo for instant answers. Do not include passwords, API keys, private customer data, confidential project names, or other sensitive material in searches, and verify important results because Instant Answer data can be incomplete or stale.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (4)

Lp3

Medium
Category
MCP Least Privilege
Confidence
91% confidence
Finding
The skill invokes shell commands and performs outbound network access, but the metadata does not declare these capabilities or corresponding permissions. This can bypass user/operator expectations and policy controls, increasing the risk of unintended data egress or execution in environments that rely on declared permissions for trust and sandboxing.

Vague Triggers

Medium
Confidence
88% confidence
Finding
The trigger phrases are overly broad, including common conversational patterns like 'what is' and 'how to', which can cause the skill to activate unexpectedly in routine user interactions. Because this skill sends queries to an external service, over-triggering can leak user prompts or context off-platform without clear user intent.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The markdown describes the tool as a simple web search utility but does not prominently warn that user queries are transmitted to DuckDuckGo over the network. Without a clear disclosure, users may provide sensitive, internal, or personal information under the assumption the operation is local, leading to unintended third-party exposure.

Missing User Warnings

Low
Confidence
96% confidence
Finding
The script sends the user's full search query to DuckDuckGo over the network, but it does not provide an explicit privacy warning at the point of collection or before transmission. In an agent-skill context, users may assume a local lookup tool, so sensitive prompts, internal project names, credentials, or personal data could be unintentionally disclosed to a third party.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal