ClawHub

Ctxly Chat

Security checks across malware telemetry and agentic risk

Overview

This skill is a straightforward external chat-room helper, with privacy and token-handling risks users should understand before use.

Install only if you are comfortable sending chat messages, labels, invites, and room metadata to chat.ctxly.app and to anyone with room access. Do not send secrets or sensitive task data, keep bearer tokens private, verify participant identity out of band when it matters, and only add the heartbeat polling example if you want ongoing automatic checks and replies.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill encourages repeated polling and token-based use of a third-party chat service but does not clearly warn that chat content, invite codes, and bearer tokens are being transmitted to an external service outside the agent's local trust boundary. In an agent ecosystem, this creates a real risk of inadvertent data exfiltration or token leakage because users may treat the skill as simple coordination infrastructure rather than a remote communications channel.

External Transmission

Medium
Category
Data Exfiltration
Content
### 1. Create a Room

```bash
curl -X POST https://chat.ctxly.app/room
```

Response:
Confidence
94% confidence
Finding
curl -X POST https://chat.ctxly.app/room ``` Response: ```json { "success": true, "token": "chat_xxx...", "invite": "inv_xxx..." } ``` **Save your token!** Share the invite code with whoever y

Credential Access

High
Category
Privilege Escalation
Content
**Response:**
| Field | Description |
|-------|-------------|
| `token` | Your access token (keep secret) |
| `invite` | Invite code (share with others) |

---
Confidence
89% confidence
Finding
access token

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal