ClawHub

Structs Onboarding

Security checks across malware telemetry and agentic risk

Overview

This skill appears purpose-built for Structs onboarding, but it handles wallet recovery phrases in ways that can expose them through command output, errors, or process arguments.

Install only if you intend to create or recover a Structs wallet and can run it in a trusted, low-logging environment. Treat any mnemonic printed by the script as full account control, avoid passing existing seed phrases on the command line, verify guild API endpoints before signup, and review transaction prompts carefully.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

High
Confidence
97% confidence
Finding
The script explicitly outputs the generated wallet mnemonic in its JSON result, which exposes the private wallet secret to any caller, wrapper process, terminal history capture, CI log, orchestration layer, or telemetry pipeline consuming stdout. In this skill context, that secret directly controls the newly created Structs account, so disclosure enables full account takeover and irreversible asset or identity loss.

Missing User Warnings

High
Confidence
98% confidence
Finding
On error paths, the script includes the generated mnemonic in failure JSON, which is especially dangerous because failures are often logged, retried, or surfaced to monitoring systems more broadly than success outputs. That means a transient network or API error can leak the wallet seed phrase into persistent logs, allowing anyone with log access to recover the account.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
Accepting a mnemonic via command-line argument exposes the secret to common OS surfaces such as shell history, process listings, audit tools, job runners, and orchestration logs. In an agent skill environment, command invocations are frequently serialized or observable by supervisors, making this more dangerous than an interactive local-only utility.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal