ClawHub

Mockplus Reader

Security checks across malware telemetry and agentic risk

Overview

The skill appears to be a MockPlus reader, but its instructions also include hardcoded local paths and host-modifying npm install/run commands that do not fit a read-only analysis purpose.

Review before installing. Use this skill only if you specifically want it to run a local MockPlus-to-app workflow, and inspect or remove the hardcoded path and npm install/run steps first. For ordinary MockPlus reading, prefer a skill that only opens, snapshots, and extracts page content without modifying the local environment.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • MCP Tool PoisoningHidden Instructions, Unicode Deception, Parameter Description Injection
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (2)

Description-Behavior Mismatch

Medium
Confidence
93% confidence
Finding
The skill is declared as a MockPlus reader/analyzer, but the documentation also includes a preexisting local project path plus instructions to install tooling and run a uni-app/Vue3 application. This expands the effective behavior from passive web analysis to local code execution and environment modification, creating an unjustified execution path that could be triggered under the guise of merely analyzing a design link.

Context-Inappropriate Capability

Medium
Confidence
95% confidence
Finding
Telling the agent to change directories, install global and local dependencies, and run a development server is not necessary for reading a MockPlus page and introduces unnecessary command execution risk. In a skill whose stated purpose is analysis only, such instructions can lead to unintended system changes, dependency installation, or execution of unreviewed local code.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal