ClawHub
Back to skill

Security audit

Movie Manager

Security checks across malware telemetry and agentic risk

Overview

This is an instruction-only movie organizer whose file changes and reminders are mostly disclosed and aligned with managing an Obsidian movie vault.

Install this only if you want an agent to create and update a Movies area in your Obsidian vault. Configure the paths carefully, review moves and profile updates before accepting them, avoid letting it inspect unrelated journals or mood logs unless you explicitly want that, and approve any cron reminder before it is created.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (2)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill explicitly describes automatic creation of directories, files, and later movement/modification of notes inside the user's Obsidian vault, but it does not clearly warn the user that it will perform write operations. In an agent context, silent filesystem changes can surprise users, overwrite organization, and create unintended data integrity issues even if the intended functionality is legitimate.

Missing User Warnings

Medium
Confidence
88% confidence
Finding
The skill says it may inspect recent logs or mood data to tailor recommendations, which implies access to potentially sensitive personal context without a clear privacy notice or consent flow. In a note-taking vault, logs and mood journals may contain intimate data, so undisclosed access expands privacy risk beyond what a user may expect from a movie recommendation skill.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.